white2hack 📚

Red Team Recipes 25 Methods for Pipeline Attacks(RTC0011) https://lnkd.in/exftHCuq 100 Methods for Container Attacks (RTC0010) https://lnkd.in/e9bTin_k 60 Methods For Cloud Attacks (RTC0009) https://lnkd.in/etTExQ2g Awesome Maltego Transforms(RTC0008) https://lnkd.in/edmu7Cib Satellite Hacking Demystified(RTC0007) https://lnkd.in/evVHKeCK Large Language Model Prompts (RTC0006) https://lnkd.in/eNz9j7eW Finding 0-day vulnerabilities in apps using the Red Team approach(RTC0005) https://lnkd.in/ecG2yPPJ Methods For Fileless Execution(RTC0004) https://lnkd.in/e2-BuQPX 64 Methods For Execute Mimikatz(RTC0003) https://lnkd.in/ewG-GQ5t 50 Methods For Lsass Dump (RTC0002) https://lnkd.in/e_qtwKAJ 40 Methods For Privilege Escalation (RTC0001) https://lnkd.in/ebMtvpnH #pentest

Редакция журнала ][акер открыла предзаказ бумажного спецвыпуска «Хакера» Прош­ло боль­ше вось­ми лет пос­ле того, как в киос­ках пос­ледний раз про­давал­ся жур­нал «Хакер». Се­год­ня мы откры­ваем сбор пред­варитель­ных заказов на бумаж­ный спец­выпуск. В него вой­дут темы номеров с середи­ны 2015 года по середи­ну 2017-го, то есть луч­шие статьи за пер­вые два года пос­ле перехо­да «Хакера» в циф­ру. Это уни­каль­ный шанс про­честь их на бумаге. Сделай предзаказ за половину розничной цены уже сегодня, и ты получишь свой журнал, который будет приятно полистать, прочесть и поставить на полку. Сде­лать пред­варитель­ный заказ на бу­маж­ный спец­выпуск мож­но уже сей­час. Цена сос­тавит 500 руб­лей, тог­да как в роз­ницу жур­нал будет сто­ить 1000 руб­лей.

Professional Red Teaming. Conducting Successful Cybersecurity Engagements, Jacob G. Oakley, 2019 Use this unique book to leverage technology when conducting offensive security engagements. You will understand practical tradecraft, operational guidelines, and offensive security best practices as carrying out professional cybersecurity engagements is more than exploiting computers, executing scripts, or utilizing tools. #book #pentest

Docker in Practice, Second Edition, Ian Miell and Aidan Hobson Sayers, 2019 The book teaches you rock-solid, tested Docker techniques, such as replacing VMs, enabling microservices architecture, efficient network modeling, offline productivity, and establishing a container-driven continuous delivery process. Following a cookbook-style problem/solution format, you’ll explore real-world use cases and learn how to apply the lessons to your own dev projects. #book #SecDevOps

Как обсуждать условия и деньги на новой работе, Тинькофф Журнал, 2022 Расскажем, как принимать взвешенные решения и выбрать лучшее предложение о работе из нескольких. Поможем использовать отказы себе на пользу и грамотно все спланировать, чтобы закончить дела на старой работе и быстро влиться в команду на новой. В курсе 4 урока, которые помогут получить лучший оффер! Загрузить с Облака Как найти подходящую вакансию и рассказать о себе, Тинькофф Журнал, 2022 Курс о том, как искать хорошие вакансии и попасть на собеседование в компанию мечты. Загрузить с облака #job #skillsoft

25 Methods For Pipeline Attacks, Hadess, 2023 #

Kevin Mitnick Lessons(RTC0012) Source #useful #celebrity

Penetration Testing Azure for Ethical Hackers: Develop practical skills to perform pentesting and risk assessment of Microsoft Azure environments by David Okeyode, Karl Fosaaen, Charles Horton, 2023 This book offers a no-faff, hands-on approach to exploring Azure penetration testing methodologies, which will get up and running in no time with the help of real-world examples, scripts, and ready-to-use source code. What you will learn (+) Identify how administrators misconfigure Azure services (+) Understand how to detect cloud infrastructure (+) Explore processes and techniques for exploiting common Azure security issues (+) Use on-premises networks to pivot and escalate access within Azure (+) Diagnose gaps and weaknesses in Azure security #book #windows #DevSecOps

Aligning Security Operations with the MITRE ATT&CK Framework, Rebecca Blair, 2023 Level up your security operations center for better security. In this book, you'll first learn to identify the strengths and weaknesses of your SOC environment, and how ATT&CK can help you improve it. Next, you'll explore how to implement the framework and use it to fill any security gaps you've identified, expediting the process without the need for any external or extra resources. Finally, you'll get a glimpse into the world of active SOC managers and practitioners using the ATT&CK framework, unlocking their expertise, cautionary tales, best practices, and ways to continuously improve. By the end of this book, you'll be ready to assess your SOC environment, implement the ATT&CK framework, and advance in your security career. #book

Python for Security and Networking, Third Edition, José Manuel Ortega, 2023 Leverage Python modules and tools in securing your network and applications The first part of this book will walk you through Python scripts and libraries that you'll use throughout the book. Next, you'll dive deep into the core networking tasks where you will learn how to check a network's vulnerability using Python security scripting and understand how to check for vulnerabilities in your network – including tasks related to packet sniffing. You'll also learn how to achieve endpoint protection by leveraging Python packages along with writing forensics scripts. The next part of the book will show you a variety of modern techniques, libraries, and frameworks from the Python ecosystem that will help you extract data from servers and analyze the security in web applications. You'll take your first steps in extracting data from a domain using OSINT tools and using Python tools to perform forensics tasks. #book #python

BurpGPT – ChatGPT Powered Automated Vulnerability Detection Tool A Burp Suite extension that integrates OpenAI's GPT to perform an additional passive scan for discovering highly bespoke vulnerabilities, and enables running traffic-based analysis of any type. GitHub Review #web #hacktools