Kali Linux权威教程：渗透测试分布详解

kali

ctf

需积分: 10 48 浏览量更新于2024-07-18 1 收藏 9.85MB PDF 举报

身份认证购VIP最低享 7 折!

30元优惠券

"Kali Linux Revealed 1st edition" 是一本官方的Kali Linux教程，由Raphaël Hertzog、Jim O’Gorman和Mati Aharoni合著，详细介绍了渗透测试领域的知识。 Kali Linux是全球广泛使用的开源渗透测试操作系统，主要为网络安全专业人士设计，用于合法的漏洞检测和安全评估。本书《Kali Linux Revealed》深入探讨了这个平台的核心功能和使用技巧，旨在帮助读者掌握渗透测试的基础和高级技术。内容涵盖了以下几个关键知识点： 1. **Kali Linux介绍**：书中详细介绍了Kali Linux的历史、设计理念以及它在网络安全领域的重要性。Kali是基于Debian的发行版，专门针对渗透测试和安全审计进行了优化，包含了大量的安全工具。 2. **安装与配置**：包括了Kali Linux的多种安装方式，如硬盘安装、虚拟机安装、Live USB等，并讲解了如何进行系统配置以满足特定的安全测试需求。 3. **渗透测试基础**：书中涵盖了渗透测试的基本概念和流程，如信息收集、漏洞扫描、利用、权限提升和后渗透操作，这些都是渗透测试者必备的知识。 4. **工具详解**：Kali Linux包含了数百个预装的渗透测试工具，如Nmap（网络映射）、Wireshark（网络封包分析）、Metasploit（漏洞利用框架）等，书中会详细介绍这些工具的用法和应用场景。 5. **CTF（Capture The Flag）实战**：标签中的"ctf"暗示了书中可能包含CTF比赛的相关内容，这通常涉及解决实际安全问题，通过解谜和破解挑战来提高技能。 6. **伦理与法律**：渗透测试必须在合法范围内进行，书中会强调道德和法律规定，指导读者遵循正确的测试实践，避免违法行为。 7. **高级话题**：除了基础内容，可能还会讨论更复杂的主题，如自定义Kali ISO、编写自己的渗透测试脚本，以及如何应对不断变化的网络安全威胁。 8. **版权与商标政策**：书中的信息表明，使用或分发这本书，无论是否修改，都必须遵守Kali Linux的商标政策，尊重作者的创作权益。《Kali Linux Revealed》是一本全面的指南，不仅适合初学者入门，也对经验丰富的安全专家提供了有价值的见解和技巧。通过阅读此书，读者可以深入了解Kali Linux的精髓，提升其在网络安全和渗透测试领域的专业能力。

资源详情

资源推荐

There was some speculation in the industry. Some thought that BackTrack was getting “bought

out”, selling its soul to a faceless evil corporate overlord for a massive payout. Offensive Secu-

rity was growing into one of the most respected training companies and a thought leader in our

industry, and some speculated that its success had gobbled up and sidelined the key BackTrack

developers. However, nothing could be farther from the truth.

In 2013, Kali Linux 1.0 was released. From the release notes: “After a year of silent development,

Offensive Security is proud to announce the release and public availability of Kali Linux, the most

advanced, robust, and stable penetration-testing distribution to date. Kali is a more mature, se-

cure, and enterprise-ready version of BackTrack.”

Kali Linux was not a mere rebranding of BackTrack. Sporting more than 600 completely repack-

aged tools, it was clearly an amazing toolset, but there was still more to it than that. Kali had been

built, from the ground up, on a Debian core. To the uninformed, this might not seem like a big

deal. But the ripple effects were staggering. Thanks to a massive repackaging effort, Kali users

could download the source for every single tool; they could modify and rebuild a tool as needed,

with only a few keystrokes. Unlike other mainstream operating systems of the day, Kali Linux

synchronized with the Debian repositories four times a day, which meant Kali users could get

wickedly current package updates and security fixes. Kali developers threw themselves into the

fray, packaging and maintaining upstream versions of many tools so that users were constantly

kept on the bleeding edge. Thanks to its Debian roots, Kali’s users could bootstrap an installation

or ISO directly from the repositories, which opened the door for completely customized Kali in-

stallations or massive enterprise deployments, which could be further automated and customized

with preseed files. To complete the customization trifecta, Kali Users could modify the desktop

environment, alter menus, change icons, and even replace windowing environments. A massive

ARM development push opened the door for installation of Kali Linux on a wide range of hardware

platforms including access points, single-board computers (Raspberry Pi, ODROID, BeagleBone,

and CubieBoard, for example), and ARM-based Chromebook computers. And last but certainly

not least, Kali Linux sported seamless minor and major upgrades, which meant devotees would

never have to re-install customized Kali Linux setups.

The community took notice. In the first five days, 90,000 of us downloaded Kali 1.0.

This was just the beginning. In 2015, Kali 2.0 was released, followed by the 2016 rolling releases.

In summary, “If Kali 1.0 was focused on building a solid infrastructure, then Kali 2.0 is focused on

overhauling the user experience and maintaining updated packages and tool repositories.”

The current version of Kali Linux is a rolling distribution, which marks the end of discrete ver-

sions. Now, users are up to date continuously and receive updates and patches as they are created.

Core tools are updated more frequently thanks to an upstream version tagging system, ground-

breaking accessibility improvements for the visually impaired have been implemented, and the

Linux kernels are updated and patched to continue wireless 802.11 injection support. Software De-

fined Radio (SDR) and Near-Field Communication (NFC) tools add support for new fields of security

testing. Full Linux encrypted disk installation and emergency self-destruct options are available,

XIV

Kali Linux Revealed

thanks to LVM and LUKS respectively, USB persistence options have been added, allowing USB-

based Kali installs to maintain changes between reboots, whether the USB drive is encrypted or

not. Finally, the latest revisions of Kali opened the door for NetHunter, an open-source world-class

operating system running on mobile devices based on Kali Linux and Android.

Kali Linux has evolved not only into the information security professional’s platform of choice,

but truly into an industrial-grade, world-class, mature, secure, and enterprise-ready operating

system distribution.

Through the decade-long development process, Muts and his team, along with the tireless dedi-

cation of countless volunteers from the hacker community, have taken on the burden of stream-

lining and organizing our work environment, freeing us from much of the drudgery of our work

and providing a secure and reliable foundation, allowing us to concentrate on driving the industry

forward to the end goal of securing our digital world.

And interestingly, but not surprisingly, an amazing community has built up around Kali Linux.

Each and every month, three to four hundred thousand of us download a version of Kali. We come

together on the Kali forums, some forty-thousand strong, and three to four hundred of us at a time

can be found on the Kali IRC channel. We gather at conferences and attend Kali Dojos to learn how

to best leverage Kali from the developers themselves.

Kali Linux has changed the world of information security for the better, and Muts and his team

have saved each of us countless hours of toil and frustration, allowing us to spend more time and

energy driving the industry forward, together.

But despite its amazing acceptance, support, and popularity, Kali has never released an official

manual. Well, now that has changed. I’m thrilled to have come alongside the Kali development

team and specifically Mati Aharoni, Raphaël Hertzog, Devon Kearns, and Jim O’Gorman to offer

this, the first in perhaps a series of official publications focused on Kali Linux. In this book, we

will focus on the Kali Linux platform itself, and help you understand and maximize the usage of

Kali from the ground up. We won’t yet delve into the arsenal of tools contained in Kali Linux, but

whether you’re a veteran or an absolute n00b, this is the best place to start, if you’re ready to dig

in and get serious with Kali Linux. Regardless of how long you’ve been at the game, your decision

to read this book connects you to the growing Kali Linux community, one of the oldest, largest,

most active, and most vibrant in our industry.

On behalf of Muts and the rest of the amazing Kali team, congratulations on taking the first step

to mastering Kali Linux!

Johnny Long

February 2017

Preface

Foreword

The sixteen high-end laptops ordered for your pentesting team just arrived, and you have been

tasked to set them up—for tomorrow’s offsite engagement. You install Kali and boot up one of the

laptops only to find that it is barely usable. Despite Kali’s cutting-edge kernel, the network cards

and mouse aren’t working, and the hefty NVIDIA graphics card and GPU are staring at you blankly,

because they lack properly installed drivers. You sigh.

In Kali Live mode, you quickly type lspci into a console, then squint. You scroll through the

hardware listing: “PCI bridge, USB controller, SATA controller. Aha! Ethernet and Network con-

trollers.” A quick Google search for their respective model numbers, cross referenced with the

Kali kernel version, reveals that these cutting-edge drivers haven’t reached the mainline kernel

yet.

But all is not lost. A plan is slowly formulating in your head, and you thank the heavens for the

Kali Linux Revealed book that you picked up a couple of weeks ago. You could use the Kali Live-

Build system to create a custom Kali ISO, which would have the needed drivers baked into the

installation media. In addition, you could include the NVIDIA graphics drivers as well as the CUDA

libraries needed to get that beast of a GPU to talk nicely to hashcat, and have it purr while cracking

password hashes at blistering speeds. Heck, you could even throw in a custom wallpaper with a

Microsoft Logo on it, to taunt your team at work.

Since the hardware profiles for your installations are identical, you add a preseeded boot option to

the ISO, so that your team can boot off a USB stick and have Kali installed with no user interaction—

the installation takes care of itself, full disk encryption and all.

Perfect! You can now generate an updated version of Kali on demand, specifically designed and

optimized for your hardware. You saved the day. Mission complete!

With the deluge of hardware hitting the market, this scenario is becoming more common for

those of us who venture away from mainstream operating systems, in search of something leaner,

meaner, or more suitable to our work and style.

This is especially applicable to those attracted to the security field, whether it be an alluring hobby,

fascination, or line of work. As newcomers, they often find themselves stumped by the environ-

ment or the operating system. For many newcomers Kali is their first introduction to Linux.

We recognized this shift in our user base a couple of years back, and figured that we could help

our community by creating a structured, introductory book that would guide users into the world

剩余340页未读，继续阅读

milesandnick

粉丝: 6
资源: 24

Kali Linux权威教程：渗透测试分布详解

Kali Linux 网络扫描秘籍 中文版

KaLi Linux中文指南

Kali-Linux-Revealed-1st-edition.doc

有可以自学的kali linuk的教程推荐吗

kali-linux-2023.1-installer-amd64是什么版本

kali-linux-2018.1a-rpi3-nexmon.img 默认密码

wsl --install -d kali-linuxkali-linux d:\WSL\kali.tar

提示这个E: Unable to locate package kali-linux-full

kali-linux-2017.3-vm-i386.zip下载

kali-linux-2021.3-vmware-amd64.vmx

kali-linux-2021.4-vmware-amd64

虚拟机安装kali-linux

kali-linux-2019.4-vmware-amd64.zip

E: Unable to locate package kali-linux-full

kali-linux 2023.3-vmware-amd64下载

E: 无法定位软件包 kali-linux-all

kali-linux-2022.1-vmware-amd64

kali-everything 安装

kali出现错误:1 http://http.kali.org/kali kali-rolling InRelease 暂时不能解析域名“http.kali.org”

最新资源

Kali Linux 网络扫描秘籍中文版