Network Security Assessment 3e: Know Your Network

Much better than the previous version. Better structure, updated content and very useful references to tools and examples. As I am preparing for CTL I use this book along with the previous version and I can tell this is a much better more up to date and even more pleasant read. CVEs and vulnerabilities are now more up to date and it feels as if it has a nicer flow than its predecessor. On the Microsoft Services chapter it could include a bit more information but I find it a great reference book that will point me to the right direction if I want to further investigate any topic. It also provides entry-level people with a clear methodology regarding network enumeration and assessment. I would highly recommend it to security professionals of any level.

This is a great book to read for the CCT-Infrastructure exam. The author has laid out the book with so much information and in an orderly manner. 'Web Application Hacking Handbook (WAHH)' is for Web application testing and this I feel would be the book for Infrastructure testing. I like this book so much that when I thought I lost it bought another. Now I have two of them (found it in the end) and would not get rid of either just in case I lose one of them.

Wish I picked this up a month ago... I recently sat and failed my CPSA exam, studying was mainly based on training provided from a classroom environment which was a big mistake. This is the book to buy if you are going for the CPSA, goes into a lot of detail. I'm relatively new to Cyber Security coming previously from the Service Desk world, I need to brush up on networking but in general, the book is great. It's already plugging the knowledge gaps and covers many of the question types posed in the exam. So pick this up if you are beginning your CREST journey and make sure to know the difference between symmetric, asymmetric ciphers, hashes an when to use them! Confident with the help of this book i'll get it next time :-)

This is *the* book on network security. If you want to learn how to scan, enumurate, and exploit, then do OSCP of course (or the "new" "challenger" sites like HackTheBox or TryHackMe), but if you want a book to accompany you on your network... er... exploits... THIS IS THE BOOK!

Contains a lot of useful information, highly recommended

There are few sec books that actually cover the technical detail as this book does. I love it, its definitely my favorite book so far. They don't waste your time with irrelevant rambling and they stay on topic and provide the appropriate output for that topic. I would defiantly say this is not for someone who is just starting out in the field. I think all sec guys should have this book close at hand for quick referencing.

Great book. Full of useful and up-to-date enumeration techniques for a wide variety of common services, protocols, software and frameworks. This definitely belongs in the library of anyone working in IT security.

There are very few books that truly capture the nuts and bolts of what it is to perform a network security assessment. The text walks through each step in great detail, walking the reader through the steps they need. The detail the author goes into highlights their intimate knowledge of network security. My only criticism of the book is that it's light on the reporting. There is no point going into all this detail if the information never gets reported to anyone. Hopefully something that will be included in the 2nd Edition.

One of the best and most indepth books I've read on the subject. It should be considered the "goto" manual for anybody in the field.

Extremely good book. Lots and lots of quality material, well explained and well structured.

Buen precio