2019年3月:Strongbox处于低维护模式;它将继续收到较小的更新,但是我们建议新用户签出(在Strongbox开源后启动)和。
Strongbox是用于管理,存储和检索机密(访问令牌,加密密钥,私有证书等)的CLI/GUI和SDK。
Strongbox是AWSKMS,DynamoDB和IAM之上的客户端便利层。
它为您管理AWS资源并以安全的方式配置它们。
自2016年年中以来,Strongbox已投入生产,现已在Schibsted内部广泛使用。
入门请访问我们的以快速入门。
有关更多详细信息,请访问。
执照版权所有(c)2016SchibstedProducts&TechnologyAS根据Apache许可版本2.0(“许可”)许可;
除非遵守许可,否则不得使用此文件。
您可以在以下位置获得许可的副本:http://www.apache.org/licenses/LICENSE-2.0除非适用法律要求或以书面形式同意,否则根据“许可”分发的软件将按“原样”分发,而没有任何明示或暗示的保证或条件。
有关许可下特定的语言管理权限和限制,请参阅
Strongbox是用于管理,存储和检索机密(访问令牌,加密密钥,私有证书等)的CLI/GUI和SDK。
Strongbox是AWSKMS,DynamoDB和IAM之上的客户端便利层。
它为您管理AWS资源并以安全的方式配置它们。
自2016年年中以来,Strongbox已投入生产,现已在Schibsted内部广泛使用。
入门请访问我们的以快速入门。
有关更多详细信息,请访问。
执照版权所有(c)2016SchibstedProducts&TechnologyAS根据Apache许可版本2.0(“许可”)许可;
除非遵守许可,否则不得使用此文件。
您可以在以下位置获得许可的副本:http://www.apache.org/licenses/LICENSE-2.0除非适用法律要求或以书面形式同意,否则根据“许可”分发的软件将按“原样”分发,而没有任何明示或暗示的保证或条件。
有关许可下特定的语言管理权限和限制,请参阅
2025/3/30 21:44:03
400KB
1
AWS食谱安装$gitclonehttps://github.com/nccgroup/AWS-recipes$cdAWS-recipes$pipinstall-rrequirements.txt内容要遵循的是此存储库内容的高级描述。
CloudFormation模板此文件夹包含许多CloudFormation模板,可用于实现或演示功能。
IAM政策此文件夹包含许多有用的IAM策略。
Python此文件夹包含许多用Python编写的AWS食谱,旨在帮助提高AWS的安全性。
CloudFormation模板此文件夹包含许多CloudFormation模板,可用于实现或演示功能。
IAM政策此文件夹包含许多有用的IAM策略。
Python此文件夹包含许多用Python编写的AWS食谱,旨在帮助提高AWS的安全性。
2025/3/23 12:04:54
65KB
1
基于(ISC)2CISSPCommonBodyofKnowledge,可以辅助allinone加深对8个域知识点了解,最新的知识点已经在2018年4月15日CISSP考试中广泛体现。
本学习指南重点突出知识点概念并伴有相应测试题,结合allinone8后面测试题、光盘题和《CISSPOfficial(ISC)2PracticeTests2018年第二版》英文版&官方练习题及解题详解(1300题左右),备考题库已足够了解所有知识点本书含21章节,各域对应的章节如下:1-4章对应Domain1SecurityandRiskMgmt第5章对应Domain2Assetsecurity资产安全第6,7,8,9,10章对应Domain3安全架构与工程第11,12章,通讯与网络安全第13,14章,身份与访问管理IAM第15章对应域安全评估与测试第16,17,18,19章对应域7安全运维第20,21章软件开发安全DevelopmentEditor:KellyTalbotTechnicalEditors:JeffParker,BobSipes,andDavidSeidlCopyEditor:KimWimpsettEditorialManager:PeteGaughanProductionManager:KathleenwisorExecutiveeditor:imminatelProofreader:AmyschneiderIndexer:JohnnaVanHoosedinseProjectCoordinator,Cover:brentSavageCoverDesigner:wileyCoverImage:@JeremyWoodhouse/GettyImages,Inc.CopyrightC2018byJohnWileySons,InC,Indianapolis,IndianaPublishedsimultaneouslyinCanadaISBN:978-1-119-47593-4ISBN:978-1-119-47595-8(ebk)ISBN:978-1-119-47587-3(ebk)ManufacturedintheUnitedStatesofamericaNopartofthispublicationmaybereproduced,storedinaretrievalsystemortransmittedianyformorbyanymeans,electronic,mechanical,photocopying,recording,scanningorotherwise,exceptaspermittedunderSections107or108ofthe1976UnitedStatesCopyrightAct,withouteitherthepriorwrittenpermissionofthePublisher,orauthorizationthroughpaymentoftheappropriateper-copyfeetotheCopyrightClearanceCenter,222RosewoodDrive,Danvers,MAO1923,(978)750-8400,fax(978)646-8600RequeststothePublisherforpermissionshouldbeaddressedtothepermissionsDepartment,JohnWileysons,Inc.111RiverStreet,Hoboken,NJo7030,(201)748-6011,fax(201)748-6008,oronlineathttp://www.wiley.com/go/permissionsLimitofliability/DisclaimerofWarranty:Thepublisherandtheauthormakenorepresentationsorwarrantieswithrespecttotheaccuracyorcompletenessofthecontentsofthisworkandspecificallydisclaimallwarranties,includingwithoutlimitationwarrantiesoffitnessforaparticularpurpose.Nowarrantymaybecreatedorextendedbysalesorpromotionalmaterials.Theadviceandstrategiescontainedhereinmaynotbesuitableforeverysituation.Thisworkissoldwiththeunderstandingthatthepublisherisnotengagedinrenderinglegal,accounting,orotherprofessionalservices.Ifprofessionalassistanceisrequiredtheservicesofacompetentprofessionalpersonshouldbesought.Neitherthepublishernortheauthorshallbeliablefordamagesarisingherefrom.ThefactthatanorganizationorWebsiteisreferredtointhisworkasacitationand/orapotentialsourceoffurtherinformationdoesnotmeanthattheauthororthepublisherendorsestheinformationtheorganizationorWebsitemayprovideorrecommendationsitmaymakeFurtherreadersshouldbeawarethatInternetWebsiteslistedinthisworkmayhavechangedordisappearedbetweenwhenthisworkwaswrittenandwhenitisreadForgeneralinformationonourotherproductsandservicesortoobtaintechnicalsupportpleasecontactourCustomerCareDepartmentwithintheU.S.at(877)762-2974,outsidetheUS.at(317)5723993orfax(317)572-4002Wileypublishesinavarietyofprintandelectronicformatsandbyprint-on-demand.Somematerialincludedwithstandardprintversionsofthisbookmaynotbeincludedine-booksorinprint-On-demand.IfthisbookreferstomediasuchasaCDorDVdthatisnotincludedintheversionyoupurchasedyoumaydownloadthismaterialathttp://booksupport.wilev.comFormoreinformationaboutwileyproductsvisitwww.wiley.comLibraryofCongressControlNumber:2018933561TRADEMARKS:Wiley,theWileylogo,andtheSybexlogoaretrademarksorregisteredtrademarksofJohnWileySons,Incand/oritsaffiliates,intheUnitedStatesandothercountries,andmaynotbeusedwithoutwrittenpermission.CISSPisaregisteredtrademarkof(ISC)2,Inc.AllothertrademarksarethepropertyoftheirrespectiveownersJohnWileySons,Incisnotassociatedwithanyproductorvendormentionedinthisbook.ToDewittLatimer,mymentor,friend,andcolleague.Imissyoudearly.MikeChappleToCathy,yourperspectiveontheworldandlifeoftensurprisesme,challengesme,andmakesmeloveyouevenmoreJamesmichaelstewartToNimfa,thanksforsharingyourlifewithmeforthepast26yearsandlettingmeshareminewithyouDarrilgibsonDearFuture(ISC)2MemberCongratulationsonstartingyourjourneytoCISSPRcertificationEarningyourCISSPisanexcitingandrewardingmilestoneinyourcybersecuritycareer.Notonlydoesitdemonstrateyourabilitytodevelopandmanagenearlyallaspectsofanorganizationscybersecurityoperations,butyoualsosignaltoemployersyourcommitmenttolife-longlearningandtakinganactiveroleinfulfillingthe(isc)2visionofinspiringasafeandsecurecyberworldThematerialinthisstudyguideisbaseduponthe(isc)2cisspCommonBodyofKnowledge.ItwillhelpyoupreparefortheexamthatwillassessyourcompetencyinthefollowingeightdomainsaSecurityandriskmanagement■AssetsecuritySecurityArchitectureandengineeringaCommunicationandNetworksecurityaIdentityandAccessManagement(IAM)SecurityAssessmentandTesting■SecurityOperationsSoftwareDevelopmentSecurityWhilethisstudyguidewillhelpyouprepare,passingthecisspexamdependsonyourmasteryofthedomainscombinedwithyourabilitytoapplythoseconceptsusingyourreal-worldexperienceiwishyouthebestofluckasyoucontinueonyourpathtobecomeaCISSPandcertifiedmemberof(Isc)2Sincerely,Davidshearer.CISSPCEO(ISC)2Ackn。
w|edgmentsWe'dliketoexpressourthankstoSybexforcontinuingtosupportthisproject.Extrathankstotheeightheditiondevelopmentaleditor,kellyTalbot,andtechnicaleditors,JeffParker,BobSipes,andDavidSeidlwhoperformedamazingfeatsinguidingustoimprovethisbookThanksaswelltoouragent,CaroleJelen,forcontinuingtoassistinnailingdowntheseprojectsMikejames.anddarrilSpecialthanksgototheinformationsecurityteamattheUniversityofNotreDame,whoprovidedhoursofinterestingconversationanddebateonsecurityissuesthatinspiredandinformedmuchofthematerialinthisbookIwouldliketothanktheteamatwileywhoprovidedinvaluableassistancethroughoutthebookdevelopmentprocess.ialsooweadebtofgratitudetomyliteraryagent,CaroleJelenofWatersideProductions.Mycoauthors,JamesMichaelStewartanddarrilGibsonweregreatcollaborators.JeffParker,BobSipes,andDavidSeidl,ourdiligentandknowledgeabletechnicaleditors,providedvaluableinsightaswebroughtthiseditiontopressIdalsoliketothankthemanypeoplewhoparticipatedintheproductionofthisbookbutwhomIneverhadthechancetomeet:thegraphicsteam,theproductionstaff,andallofthoseinvolvedinbringingthisbooktopress-MikeChappleThankstoMikeChappleandDarrilGibsonforcontinuingtocontributetothisprojectThanksalsotoallmycisspcoursestudentswhohaveprovidedtheirinsightandinputtoimprovemytrainingcoursewareandultimatelythistome.Tomyadoringwife,CathyBuildingalifeandafamilytogetherhasbeenmorewonderfulthanIcouldhaveeverimagined.ToSlaydeandremi:youaregrowingupsofastandlearningatanoutstandingpace,andyoucontinuetodelightandimpressmedaily.YouarebothgrowingintoamazingindividualsTomymom,Johnnie:ItiswonderfultohaveyouclosebyToMarkNomatterhowmuchtimehaspassedorhowlittleweseeeachother,Ihavebeenandalwayswillbeyourfriend.andfinally,asalways,toElvis:Youwerewayaheadofthecurrentbaconobsessionwithyourpeanutbutter/banana/baconsandwich;ithinkthat'sproofyoutraveledthroughtimeJamesmichaelStewartThankstoJimMinatelandCaroleJelenforhelpinggetthisupdateinplacebefore(IsC)2releasedtheobjectives.Thishelpedusgetaheadstartonthisnewedition,andweappreciateyourefforts.It'sbeenapleasureworkingwithtalentedpeoplelikeJamesMichaelStewartandMikeChappleThankstobothofyouforallyourworkandcollaborativeeffortsonthisproject.Thetechnicaleditors,JeffParkerBobSipes,andDavidSeidl,provideduswithsomeoutstandingfeedback,andthisbookisbetterbecauseoftheireffortsThankstotheteamatSybex(includingprojectmanagers,editors,andgraphicsartists)foralltheworkyoudidhelpingusgetthisbooktoprint.Last,thankstomywife,Nimfa,forputtingupwithmyoddhoursasIworkedonthisbookDarrilgibsonAbouttheauthorsMikeChapple,CISSP,PhD,Security+,CISA,CySA+,isanassociateteachingprofessorofIT,analytics,andoperationsattheUniversityofNotreDame.InthepasthewaschiefinformationofficerofBrandInstituteandaninformationsecurityresearcherwiththenationalSecurityagencyandtheu.s.airForcehisprimaryareasofexpertiseincludenetworkintrusiondetectionandaccesscontrols.mikeisafrequentcontributortoTechTarget'sSearchSecuritysiteandtheauthorofmorethan25booksincludingthecompanionbooktothisstudyguide:CISSPOfficial(ISC)2PracticeTests,theCompTIACSA+StudyGuide,andCyberwarfare:InformationOperationsinaConnectedWorld.MikeoffersstudygroupsfortheCISSP,SSCP,Security+,andcSa+certificationsonhiswebsiteatwww.certmike.comJamesMichaelStewart,CISSP,CEH,ECSA,CHFI,Security+Network+,hasbeenwritingandtrainingformorethan20years,withacurrentfocusonsecurity.hehasbeenteachingCiSsPtrainingcoursessince2002,nottomentionothercoursesonInternetsecurityandethicalhacking/penetrationtestingHeistheauthorofandcontributortomorethan75booksandnumerouscoursewaresetsonsecuritycertification,Microsofttopics,andnetworkadministrationincludingtheSecurity+(SY0-501)Reviewguide.Moreinformationaboutmichaelcanbefoundathiswebsiteatwww.impactonline.comDarrilGibson,CISSP,Security+,CASP,istheCeoofYODa(shortforYouCanDoAnything),andhehasauthoredorcoauthoredmorethan40books.Darrilregularlywrites,consults,andteachesonawidevarietyoftechnicalandsecuritytopicsandholdsseveralcertificationsHeregularlypostsblogarticlesathttp://blogs.getcertifiedgetahead.com/aboutcertificationtopicsandusesthatsitetohelppeoplestayabreastofchangesincertificationexams.Heloveshearingfromreaders,especiallywhentheypassanexamafterusingoneofhisbooks,andyoucancontacthimthroughthelebloggingsite.
本学习指南重点突出知识点概念并伴有相应测试题,结合allinone8后面测试题、光盘题和《CISSPOfficial(ISC)2PracticeTests2018年第二版》英文版&官方练习题及解题详解(1300题左右),备考题库已足够了解所有知识点本书含21章节,各域对应的章节如下:1-4章对应Domain1SecurityandRiskMgmt第5章对应Domain2Assetsecurity资产安全第6,7,8,9,10章对应Domain3安全架构与工程第11,12章,通讯与网络安全第13,14章,身份与访问管理IAM第15章对应域安全评估与测试第16,17,18,19章对应域7安全运维第20,21章软件开发安全DevelopmentEditor:KellyTalbotTechnicalEditors:JeffParker,BobSipes,andDavidSeidlCopyEditor:KimWimpsettEditorialManager:PeteGaughanProductionManager:KathleenwisorExecutiveeditor:imminatelProofreader:AmyschneiderIndexer:JohnnaVanHoosedinseProjectCoordinator,Cover:brentSavageCoverDesigner:wileyCoverImage:@JeremyWoodhouse/GettyImages,Inc.CopyrightC2018byJohnWileySons,InC,Indianapolis,IndianaPublishedsimultaneouslyinCanadaISBN:978-1-119-47593-4ISBN:978-1-119-47595-8(ebk)ISBN:978-1-119-47587-3(ebk)ManufacturedintheUnitedStatesofamericaNopartofthispublicationmaybereproduced,storedinaretrievalsystemortransmittedianyformorbyanymeans,electronic,mechanical,photocopying,recording,scanningorotherwise,exceptaspermittedunderSections107or108ofthe1976UnitedStatesCopyrightAct,withouteitherthepriorwrittenpermissionofthePublisher,orauthorizationthroughpaymentoftheappropriateper-copyfeetotheCopyrightClearanceCenter,222RosewoodDrive,Danvers,MAO1923,(978)750-8400,fax(978)646-8600RequeststothePublisherforpermissionshouldbeaddressedtothepermissionsDepartment,JohnWileysons,Inc.111RiverStreet,Hoboken,NJo7030,(201)748-6011,fax(201)748-6008,oronlineathttp://www.wiley.com/go/permissionsLimitofliability/DisclaimerofWarranty:Thepublisherandtheauthormakenorepresentationsorwarrantieswithrespecttotheaccuracyorcompletenessofthecontentsofthisworkandspecificallydisclaimallwarranties,includingwithoutlimitationwarrantiesoffitnessforaparticularpurpose.Nowarrantymaybecreatedorextendedbysalesorpromotionalmaterials.Theadviceandstrategiescontainedhereinmaynotbesuitableforeverysituation.Thisworkissoldwiththeunderstandingthatthepublisherisnotengagedinrenderinglegal,accounting,orotherprofessionalservices.Ifprofessionalassistanceisrequiredtheservicesofacompetentprofessionalpersonshouldbesought.Neitherthepublishernortheauthorshallbeliablefordamagesarisingherefrom.ThefactthatanorganizationorWebsiteisreferredtointhisworkasacitationand/orapotentialsourceoffurtherinformationdoesnotmeanthattheauthororthepublisherendorsestheinformationtheorganizationorWebsitemayprovideorrecommendationsitmaymakeFurtherreadersshouldbeawarethatInternetWebsiteslistedinthisworkmayhavechangedordisappearedbetweenwhenthisworkwaswrittenandwhenitisreadForgeneralinformationonourotherproductsandservicesortoobtaintechnicalsupportpleasecontactourCustomerCareDepartmentwithintheU.S.at(877)762-2974,outsidetheUS.at(317)5723993orfax(317)572-4002Wileypublishesinavarietyofprintandelectronicformatsandbyprint-on-demand.Somematerialincludedwithstandardprintversionsofthisbookmaynotbeincludedine-booksorinprint-On-demand.IfthisbookreferstomediasuchasaCDorDVdthatisnotincludedintheversionyoupurchasedyoumaydownloadthismaterialathttp://booksupport.wilev.comFormoreinformationaboutwileyproductsvisitwww.wiley.comLibraryofCongressControlNumber:2018933561TRADEMARKS:Wiley,theWileylogo,andtheSybexlogoaretrademarksorregisteredtrademarksofJohnWileySons,Incand/oritsaffiliates,intheUnitedStatesandothercountries,andmaynotbeusedwithoutwrittenpermission.CISSPisaregisteredtrademarkof(ISC)2,Inc.AllothertrademarksarethepropertyoftheirrespectiveownersJohnWileySons,Incisnotassociatedwithanyproductorvendormentionedinthisbook.ToDewittLatimer,mymentor,friend,andcolleague.Imissyoudearly.MikeChappleToCathy,yourperspectiveontheworldandlifeoftensurprisesme,challengesme,andmakesmeloveyouevenmoreJamesmichaelstewartToNimfa,thanksforsharingyourlifewithmeforthepast26yearsandlettingmeshareminewithyouDarrilgibsonDearFuture(ISC)2MemberCongratulationsonstartingyourjourneytoCISSPRcertificationEarningyourCISSPisanexcitingandrewardingmilestoneinyourcybersecuritycareer.Notonlydoesitdemonstrateyourabilitytodevelopandmanagenearlyallaspectsofanorganizationscybersecurityoperations,butyoualsosignaltoemployersyourcommitmenttolife-longlearningandtakinganactiveroleinfulfillingthe(isc)2visionofinspiringasafeandsecurecyberworldThematerialinthisstudyguideisbaseduponthe(isc)2cisspCommonBodyofKnowledge.ItwillhelpyoupreparefortheexamthatwillassessyourcompetencyinthefollowingeightdomainsaSecurityandriskmanagement■AssetsecuritySecurityArchitectureandengineeringaCommunicationandNetworksecurityaIdentityandAccessManagement(IAM)SecurityAssessmentandTesting■SecurityOperationsSoftwareDevelopmentSecurityWhilethisstudyguidewillhelpyouprepare,passingthecisspexamdependsonyourmasteryofthedomainscombinedwithyourabilitytoapplythoseconceptsusingyourreal-worldexperienceiwishyouthebestofluckasyoucontinueonyourpathtobecomeaCISSPandcertifiedmemberof(Isc)2Sincerely,Davidshearer.CISSPCEO(ISC)2Ackn。
w|edgmentsWe'dliketoexpressourthankstoSybexforcontinuingtosupportthisproject.Extrathankstotheeightheditiondevelopmentaleditor,kellyTalbot,andtechnicaleditors,JeffParker,BobSipes,andDavidSeidlwhoperformedamazingfeatsinguidingustoimprovethisbookThanksaswelltoouragent,CaroleJelen,forcontinuingtoassistinnailingdowntheseprojectsMikejames.anddarrilSpecialthanksgototheinformationsecurityteamattheUniversityofNotreDame,whoprovidedhoursofinterestingconversationanddebateonsecurityissuesthatinspiredandinformedmuchofthematerialinthisbookIwouldliketothanktheteamatwileywhoprovidedinvaluableassistancethroughoutthebookdevelopmentprocess.ialsooweadebtofgratitudetomyliteraryagent,CaroleJelenofWatersideProductions.Mycoauthors,JamesMichaelStewartanddarrilGibsonweregreatcollaborators.JeffParker,BobSipes,andDavidSeidl,ourdiligentandknowledgeabletechnicaleditors,providedvaluableinsightaswebroughtthiseditiontopressIdalsoliketothankthemanypeoplewhoparticipatedintheproductionofthisbookbutwhomIneverhadthechancetomeet:thegraphicsteam,theproductionstaff,andallofthoseinvolvedinbringingthisbooktopress-MikeChappleThankstoMikeChappleandDarrilGibsonforcontinuingtocontributetothisprojectThanksalsotoallmycisspcoursestudentswhohaveprovidedtheirinsightandinputtoimprovemytrainingcoursewareandultimatelythistome.Tomyadoringwife,CathyBuildingalifeandafamilytogetherhasbeenmorewonderfulthanIcouldhaveeverimagined.ToSlaydeandremi:youaregrowingupsofastandlearningatanoutstandingpace,andyoucontinuetodelightandimpressmedaily.YouarebothgrowingintoamazingindividualsTomymom,Johnnie:ItiswonderfultohaveyouclosebyToMarkNomatterhowmuchtimehaspassedorhowlittleweseeeachother,Ihavebeenandalwayswillbeyourfriend.andfinally,asalways,toElvis:Youwerewayaheadofthecurrentbaconobsessionwithyourpeanutbutter/banana/baconsandwich;ithinkthat'sproofyoutraveledthroughtimeJamesmichaelStewartThankstoJimMinatelandCaroleJelenforhelpinggetthisupdateinplacebefore(IsC)2releasedtheobjectives.Thishelpedusgetaheadstartonthisnewedition,andweappreciateyourefforts.It'sbeenapleasureworkingwithtalentedpeoplelikeJamesMichaelStewartandMikeChappleThankstobothofyouforallyourworkandcollaborativeeffortsonthisproject.Thetechnicaleditors,JeffParkerBobSipes,andDavidSeidl,provideduswithsomeoutstandingfeedback,andthisbookisbetterbecauseoftheireffortsThankstotheteamatSybex(includingprojectmanagers,editors,andgraphicsartists)foralltheworkyoudidhelpingusgetthisbooktoprint.Last,thankstomywife,Nimfa,forputtingupwithmyoddhoursasIworkedonthisbookDarrilgibsonAbouttheauthorsMikeChapple,CISSP,PhD,Security+,CISA,CySA+,isanassociateteachingprofessorofIT,analytics,andoperationsattheUniversityofNotreDame.InthepasthewaschiefinformationofficerofBrandInstituteandaninformationsecurityresearcherwiththenationalSecurityagencyandtheu.s.airForcehisprimaryareasofexpertiseincludenetworkintrusiondetectionandaccesscontrols.mikeisafrequentcontributortoTechTarget'sSearchSecuritysiteandtheauthorofmorethan25booksincludingthecompanionbooktothisstudyguide:CISSPOfficial(ISC)2PracticeTests,theCompTIACSA+StudyGuide,andCyberwarfare:InformationOperationsinaConnectedWorld.MikeoffersstudygroupsfortheCISSP,SSCP,Security+,andcSa+certificationsonhiswebsiteatwww.certmike.comJamesMichaelStewart,CISSP,CEH,ECSA,CHFI,Security+Network+,hasbeenwritingandtrainingformorethan20years,withacurrentfocusonsecurity.hehasbeenteachingCiSsPtrainingcoursessince2002,nottomentionothercoursesonInternetsecurityandethicalhacking/penetrationtestingHeistheauthorofandcontributortomorethan75booksandnumerouscoursewaresetsonsecuritycertification,Microsofttopics,andnetworkadministrationincludingtheSecurity+(SY0-501)Reviewguide.Moreinformationaboutmichaelcanbefoundathiswebsiteatwww.impactonline.comDarrilGibson,CISSP,Security+,CASP,istheCeoofYODa(shortforYouCanDoAnything),andhehasauthoredorcoauthoredmorethan40books.Darrilregularlywrites,consults,andteachesonawidevarietyoftechnicalandsecuritytopicsandholdsseveralcertificationsHeregularlypostsblogarticlesathttp://blogs.getcertifiedgetahead.com/aboutcertificationtopicsandusesthatsitetohelppeoplestayabreastofchangesincertificationexams.Heloveshearingfromreaders,especiallywhentheypassanexamafterusingoneofhisbooks,andyoucancontacthimthroughthelebloggingsite.
2025/2/15 1:12:56
17.84MB
1
ec2-plugin目录介绍允许Jenkins根据需要启动或上的代理,并在未使用它们时将其杀死。
使用此插件,如果Jenkins注意到您的构建集群超载,它将使用EC2API启动实例并自动将它们作为Jenkins代理进行连接。
当负载下降时,多余的EC2实例将被终止。
通过此设置,您可以维护一个小的内部集群,然后将尖峰的构建/测试负载分散到EC2或另一个与EC2兼容的云中。
用法首先,转到并注册该服务。
安装插件后,您将导航至“管理Jenkins”主页面>“配置系统”页面,并在底部附近向下滚动至“云”部分。
在这里,您单击“添加新的云”按钮,然后选择“AmazonEC2”选项。
这将显示用于配置EC2插件的UI。
然后输入充当用户名/密码的访问密钥和秘密访问密钥(请参阅IAM部分)。
由于EC2的工作方式,您还需要具有云另一半要用作的RSA私钥,以允许将其切入启动的实例。
请使用AWS控制台或您选择的任何其他工具来生成私钥,以交互方式登录到EC2实例。
放入访问密钥和秘密访问密钥后,为云选择一个区域(屏幕快照中未显示)。
您可以为每个区域仅定义一个云,并且UI中提供的区
使用此插件,如果Jenkins注意到您的构建集群超载,它将使用EC2API启动实例并自动将它们作为Jenkins代理进行连接。
当负载下降时,多余的EC2实例将被终止。
通过此设置,您可以维护一个小的内部集群,然后将尖峰的构建/测试负载分散到EC2或另一个与EC2兼容的云中。
用法首先,转到并注册该服务。
安装插件后,您将导航至“管理Jenkins”主页面>“配置系统”页面,并在底部附近向下滚动至“云”部分。
在这里,您单击“添加新的云”按钮,然后选择“AmazonEC2”选项。
这将显示用于配置EC2插件的UI。
然后输入充当用户名/密码的访问密钥和秘密访问密钥(请参阅IAM部分)。
由于EC2的工作方式,您还需要具有云另一半要用作的RSA私钥,以允许将其切入启动的实例。
请使用AWS控制台或您选择的任何其他工具来生成私钥,以交互方式登录到EC2实例。
放入访问密钥和秘密访问密钥后,为云选择一个区域(屏幕快照中未显示)。
您可以为每个区域仅定义一个云,并且UI中提供的区
2025/1/16 17:25:17
583KB
1
使用IAM管理AWSEC2SSH访问2019年6月:签出作为该项目的替代品2018年9月:检出以替代该项目使用IAM用户的公共SSH密钥通过SSH访问正在运行的EC2实例亚马逊Linux2017.09亚马逊Linux22017.12Ubuntu16.04SUSELinuxEnterpriseServer12SP3RHEL7.4CentOS的7如果您使用install.sh脚本,则aws-ec2-ssh取决于和git。
它是如何工作的一张图片胜过千言万语:首次启动时,将导入所有IAM用户并创建本地UNIX用户。
导入也每10分钟运行一次(通过调用)您可以控制哪些IAM用户获得本地UNIX用户并因此能够登录全部(默认)仅属于特定IAM组中的那些您可以控制向哪些IAM用户授予sudo访问权限无(默认)所有仅属于特定IAM组中的那些您可以为本地UNIX用户指定本地UNIX组。
您可以在联系AWSIAM以获取用户和密钥之前担当角色(例如,如果您的IAM用户在另一个AWS账户中)每次SSH登录时,EC
它是如何工作的一张图片胜过千言万语:首次启动时,将导入所有IAM用户并创建本地UNIX用户。
导入也每10分钟运行一次(通过调用)您可以控制哪些IAM用户获得本地UNIX用户并因此能够登录全部(默认)仅属于特定IAM组中的那些您可以控制向哪些IAM用户授予sudo访问权限无(默认)所有仅属于特定IAM组中的那些您可以为本地UNIX用户指定本地UNIX组。
您可以在联系AWSIAM以获取用户和密钥之前担当角色(例如,如果您的IAM用户在另一个AWS账户中)每次SSH登录时,EC
2024/4/26 15:58:05
95KB
1
数据仓库介绍在这个项目中,我构建了一条ETL管道来帮助一家音乐流媒体启动公司Sparkify从AWSS3(数据存储)中提取其数据,将它们暂存到AWSRedshift中,并将数据转换为一组维度表,以便他们的分析团队可以分析用户正在收听的歌曲。
要求该项目需要以下内容:有权创建IAM角色并配置AWSRedshift的AWS账户数据集:两个公共S3存储桶。
一个存储桶包含有关歌曲和艺术家的信息,第二个存储桶包含有关用户的信息。
安装与设置对于数据库架构登台表staging_songs-存储歌曲和艺术家staging_events-存储用户执行的操作事实表songplays-与歌曲相关联的事件数据记录玩弄页NextSong即记录尺寸表用户-应用中的用户歌曲-音乐数据库中的歌曲artist-音乐数据库中的艺术家时间-歌曲播放记录的时间戳分为特定单位数据仓
要求该项目需要以下内容:有权创建IAM角色并配置AWSRedshift的AWS账户数据集:两个公共S3存储桶。
一个存储桶包含有关歌曲和艺术家的信息,第二个存储桶包含有关用户的信息。
安装与设置对于数据库架构登台表staging_songs-存储歌曲和艺术家staging_events-存储用户执行的操作事实表songplays-与歌曲相关联的事件数据记录玩弄页NextSong即记录尺寸表用户-应用中的用户歌曲-音乐数据库中的歌曲artist-音乐数据库中的艺术家时间-歌曲播放记录的时间戳分为特定单位数据仓
2024/3/28 6:14:19
14KB
1
前2从您现有的AWS资源生成CloudFormation/Terraform/Troposphere模板总览Former2允许您从AWS账户中的现有资源生成“基础结构即代码”输出。
通过使用AWSJavaScriptSDK进行相关调用,Former2将扫描您的基础架构,并向您显示资源列表,供您选择为其生成输出的资源。
安装尽管不需要它,但您需要安装Former2Helper浏览器扩展才能获得对所有AWS服务的支持。
扩展的存在是为了绕过某些服务(例如S3和IAM)缺少CORS。
或者,您可以自己扩展。
用法访问开始。
您将需要一个以验证您的请求。
如果您不打算直接导入资源,建议您仅使用这些凭据提供读访问权限,并建议您分配策略。
如果打算使用导入功能,则应授予适当的权限来创建堆栈。
通过身份验证后,您可以通过仪表板或侧边栏导航到特定服务,选择要添加到输出中的资源,最后单击屏幕顶部的“生成”按钮。
当前支持以下输出:云形成地貌对流层CDK(Cfn基元)-TypeScript,Python,Java,C#CDKforTerraform-Ty
通过使用AWSJavaScriptSDK进行相关调用,Former2将扫描您的基础架构,并向您显示资源列表,供您选择为其生成输出的资源。
安装尽管不需要它,但您需要安装Former2Helper浏览器扩展才能获得对所有AWS服务的支持。
扩展的存在是为了绕过某些服务(例如S3和IAM)缺少CORS。
或者,您可以自己扩展。
用法访问开始。
您将需要一个以验证您的请求。
如果您不打算直接导入资源,建议您仅使用这些凭据提供读访问权限,并建议您分配策略。
如果打算使用导入功能,则应授予适当的权限来创建堆栈。
通过身份验证后,您可以通过仪表板或侧边栏导航到特定服务,选择要添加到输出中的资源,最后单击屏幕顶部的“生成”按钮。
当前支持以下输出:云形成地貌对流层CDK(Cfn基元)-TypeScript,Python,Java,C#CDKforTerraform-Ty
2023/12/5 5:32:47
48.23MB
1
深入浅出培训什么是零信任、零信任有什么用、零信任发展、CSA零信任体系、零信任概念核心、零信任逻辑架构、零信任实践架构、IAM身份认证技术介绍、微隔离技术路线、
2023/11/11 3:31:22
3.56MB
1
CISSPOfficial(ISC)2PracticeTestsBy作者:MikeChapple–DavidSeidlISBN-10书号:1119475929ISBN-13书号:9781119475927Edition版本:2出版日期:2018-06-13pages页数:512Full-lengthpracticetestscoveringallCISSPdomainsfortheultimateexamprepThe(ISC)2CISSPOfficialPracticeTestsisamajorresourceforCISSPcandidates,providing1300uniquepracticequestions.Thefirstpartofthebookprovides100questionsperdomain.Youalsohaveaccesstofourunique125-questionpracticeexamstohelpyoumasterthematerial.Astheonlyofficialpracticetestsendorsedby(ISC)2,thisbookgivesyoutheadvantageoffullandcompletepreparation.Thesepracticetestsalignwiththe2018versionoftheexamtoensureup-to-datepreparation,andaredesignedtocoverwhatyou’llseeonexamday.Coverageincludes:SecurityandRiskManagement,AssetSecurity,SecurityArchitectureandEngineering,CommunicationandNetworkSecurity,IdentityandAccessManagement(IAM),SecurityAssessmentandTesting,SecurityOperations,andSoftwareDevelopmentSecurity.TheCISSPcredentialsignifiesabodyofknowledgeandasetofguaranteedskillsthatputyouindemandinthemarketplace.Thisbookisyourtickettoachievingthisprestigiouscertification,byhelpingyoutestwhatyouknowagainstwhatyouneedtoknow.Testyourknowledgeofthe2018examdomainsIdentifyareasinneedoffurtherstudyGaugeyourprogressthroughoutyourexampreparationTheCISSPexamisrefreshedeveryfewyearstoensurethatcandidatesareup-to-dateonthelatestsecuritytopicsandtrends.Currently-alignedpreparationresourcesarecritical,andperiodicpracticetestsareoneofthebestwaystotrulymeasureyourlevelofunderstanding.
2023/7/15 20:56:34
12.79MB
1
每个功能插件的无服务器IAM角色一个无服务器插件,可通过在功能定义块使用iamRoleStatements轻松地为每个功能定义IAM角色。
安装npminstall--save-devserverless-iam-roles-per-function或者,如果您想尝试next即将发布的版本:npminstall--save-devserverless-iam-roles-per-function@next将插件添加到serverless.yml:plugins:-serverless-iam-roles-per-function注意:需要节点6.10或更高版本的运行时。
用法在功能级别定义iamRoleStatements定义:functions:func1:handler:handler.getiamRoleStatementsName:my-custom-role-name#optionalcustomrolenamesettinginsteadofthedefaultge
安装npminstall--save-devserverless-iam-roles-per-function或者,如果您想尝试next即将发布的版本:npminstall--save-devserverless-iam-roles-per-function@next将插件添加到serverless.yml:plugins:-serverless-iam-roles-per-function注意:需要节点6.10或更高版本的运行时。
用法在功能级别定义iamRoleStatements定义:functions:func1:handler:handler.getiamRoleStatementsName:my-custom-role-name#optionalcustomrolenamesettinginsteadofthedefaultge
2023/7/6 0:22:25
131KB
1
在日常工作中,钉钉打卡成了我生活中不可或缺的一部分。然而,有时候这个看似简单的任务却给我带来了不少烦恼。
每天早晚,我总是得牢记打开钉钉应用,点击"工作台",再找到"考勤打卡"进行签到。有时候因为工作忙碌,会忘记打卡,导致考勤异常,影响当月的工作评价。而且,由于我使用的是苹果手机,有时候系统更新后,钉钉的某些功能会出现异常,使得打卡变得更加麻烦。
另外,我的家人使用的是安卓手机,他们也经常抱怨钉钉打卡的繁琐。尤其是对于那些不太熟悉手机操作的长辈来说,每次打卡都是一次挑战。他们总是担心自己会操作失误,导致打卡失败。
为了解决这些烦恼,我开始思考是否可以通过编写一个全自动化脚本来实现钉钉打卡。经过一段时间的摸索和学习,我终于成功编写出了一个适用于苹果和安卓系统的钉钉打卡脚本。
2024-04-09 15:03
15KB