Detect and mitigate diverse cyber threats with actionable insights into attacker types, techniques, and efficient cyber threat hunting

Key Features

• Explore essential tools and techniques to ethically penetrate and safeguard digital environments
• Set up a malware lab and learn how to detect malicious code running on the network
• Understand different attacker types, their profiles, and mindset, to enhance your cyber defense plan

Book Description

If you’re an ethical hacker looking to boost your digital defenses and stay up to date with the evolving cybersecurity landscape, then this book is for you. Hands-On Ethical Hacking Tactics is a comprehensive guide that will take you from fundamental to advanced levels of ethical hacking, offering insights into both offensive and defensive techniques. Written by a seasoned professional with 20+ years of experience, this book covers attack tools, methodologies, and procedures, helping you enhance your skills in securing and defending networks.

The book starts with foundational concepts such as footprinting, reconnaissance, scanning, enumeration, vulnerability assessment, and threat modeling. Next, you’ll progress to using specific tools and procedures for hacking Windows, Unix, web servers, applications, and databases. The book also gets you up to speed with malware analysis. Throughout the book, you’ll experience a smooth transition from theoretical concepts to hands-on techniques using various platforms. Finally, you’ll explore incident response, threat hunting, social engineering, IoT hacking, and cloud exploitation, which will help you address the complex aspects of ethical hacking.

By the end of this book, you’ll have gained the skills you need to navigate the ever-changing world of cybersecurity.

What you will learn

• Understand the core concepts and principles of ethical hacking
• Gain hands-on experience through dedicated labs
• Explore how attackers leverage computer systems in the digital landscape
• Discover essential defensive technologies to detect and mitigate cyber threats
• Master the use of scanning and enumeration tools
• Understand how to hunt and use search information to identify attacks

Who this book is for

Hands-On Ethical Hacking Tactics is for penetration testers, ethical hackers, and cybersecurity enthusiasts looking to explore attack tools, methodologies, and procedures relevant to today's cybersecurity landscape. This ethical hacking book is suitable for a broad audience with varying levels of expertise in cybersecurity, whether you're a student or a professional looking for job opportunities, or just someone curious about the field.

Table of Contents

1. Ethical Hacking Concepts
2. Ethical Hacking Footprinting and Reconnaissance
3. Ethical Hacking Scanning and Enumeration
4. Ethical Hacking Vulnerability Assessment and Threat Modeling
5. Hacking the Windows Operating System
6. Hacking the Linux Operating System
7. Ethical Hacking of Web Servers
8. Hacking Databases
9. Ethical Hacking Protocol Review
10. Ethical Hacking for Malware Analysis
11. Incident Response and Threat Hunting
12. Social Engineering
13. Ethical Hacking of the Internet of Things (IoT)
14. Ethical Hacking in the Cloud

Review

“Shane Hartman has done a great job at sharing the ins and outs of ethical hacking in this book. He gives useful examples of many of the tools and techniques discussed in the book, and I think it makes the content he has shared easy to follow.

I feel someone with general knowledge of cybersecurity can take this book and feel comfortable learning the tools and skills that Shane shares.

This book scores an 'A' in my book as a valuable cybersecurity and ethical hacking resource for new and old people in cyber.”

Peter Bagley, Sr Cybersecurity Engineer (SCAMPI) at CACI International Inc.

“In this book, Shane has leveraged his real-world field experience to build a practice guide for new practitioners in a hands-on approach to ethical hacking – bravo!

Shane tinkers with new technologies as they come out, such as near-field communication (NFC) in his lab. Real penetration testers worth their salt must prove themselves with ‘trust but verify’ theories and approaches and, most importantly, validate, which is what this book is designed to do.

Shane introduces you to ethical hacking, from both offensive and defensive perspectives to both orient and enable readers to start their journey. He considers techniques, tactics, and procedures (TTPs) (MITRE ATT&CK) in everything he does, evidenced by how he thinks and walks readers through the training in this book.

This book helps readers apply ethical hacking programs and proactive security measures to reduce risk in their organization.”

Ken Dunham, CEO at 4D5A Security

“Ethical Hacking is a useful resource for learning cybersecurity concepts. The lab exercises at the end of each chapter are particularly helpful, as they provide an opportunity to apply the material in a hands-on way. These practical tasks complement the theoretical content well. The multiple-choice questions are also a nice touch, offering a way to review and assess understanding before moving forward. Overall, the book strikes a good balance between explanation and practice, making it a solid choice for those interested in ethical hacking.”

Daniel Graham, Author and Educator

About the Author

Shane Hartman, a seasoned professional with over 20 years in the computer security industry, currently serves as the Senior IR Consultant at TrustedSec. Holding a bachelor's degree in Business/e-business from the University of Phoenix and a master's in Digital Forensics from the University of Central Florida, Shane brings a wealth of academic and practical expertise to the field. With a notable CISSP certification and prior credentials, including MCSE, GREM, and GCIA, he has been actively engaged in the security discipline since 2005. In addition to Shane's extensive experience, he also teaches cybersecurity courses at the University of South Florida, including ethical hacking, digital forensics, and data analysis. This, coupled with a solid educational background, positions him as a leading authority in the dynamic realm of cybersecurity.