Ethical Hacking 简明教程
Ethical Hacking - Hacker Types
根据他们入侵系统的意图,黑客可分类为不同的类别,例如白帽子、黑帽子和灰帽子。这些不同的术语来自老式西部片,其中坏蛋戴黑色牛仔帽,好人戴白帽子。
Hackers can be classified into different categories such as white hat, black hat, and grey hat, based on their intent of hacking a system. These different terms come from old Spaghetti Westerns, where the bad guy wears a black cowboy hat and the good guy wears a white hat.
White Hat Hackers
白帽黑客又称 Ethical Hackers 。他们永远不会打算伤害一个系统,而是尝试找出计算机或网络系统中的软肋,作为渗透测试和安全漏洞评估的一部分。
White Hat hackers are also known as Ethical Hackers. They never intent to harm a system, rather they try to find out weaknesses in a computer or a network system as a part of penetration testing and vulnerability assessments.
道德黑客并不违法,并且是 IT 行业中可获得的极具挑战性的一份工作。有许多公司聘用道德黑客进行渗透测试和安全漏洞评估。
Ethical hacking is not illegal and it is one of the demanding jobs available in the IT industry. There are numerous companies that hire ethical hackers for penetration testing and vulnerability assessments.
Black Hat Hackers
黑帽黑客又称 crackers ,他们通过入侵来获取对系统的未授权访问权限,然后妨碍系统运营或窃取敏感信息。
Black Hat hackers, also known as crackers, are those who hack in order to gain unauthorized access to a system and harm its operations or steal sensitive information.
黑帽黑客总是是非法的,因为其恶意目的包括窃取公司数据、侵犯隐私、破坏系统、阻断网络通信等。
Black Hat hacking is always illegal because of its bad intent which includes stealing corporate data, violating privacy, damaging the system, blocking network communication, etc.
Grey Hat Hackers
灰帽黑客是黑帽和白帽黑客的混合体。他们会采取行动,但并非出于恶意目的。出于自己兴趣的目的,他们会在未经所有人许可或不知情的情况下利用计算机系统或网络中的安全漏洞。
Grey hat hackers are a blend of both black hat and white hat hackers. They act without malicious intent but for their fun, they exploit a security weakness in a computer system or network without the owner’s permission or knowledge.
他们的目的是引起所有人的注意,并从所有人那里得到赞赏或少量奖励金。
Their intent is to bring the weakness to the attention of the owners and getting appreciation or a little bounty from the owners.
Miscellaneous Hackers
除了上述众所周知的黑客类别外,我们还有基于他们所入侵的内容及方式对其进行划分的以下黑客类别:
Apart from the above well-known classes of hackers, we have the following categories of hackers based on what they hack and how they do it −
Red Hat Hackers
红帽黑客再次是黑帽和白帽黑客的混合体。通常他们的层次是入侵政府机构、最高机密的信息中心,以及一般归属于敏感信息类别中的一切。
Red hat hackers are again a blend of both black hat and white hat hackers. They are usually on the level of hacking government agencies, top-secret information hubs, and generally anything that falls under the category of sensitive information.
Blue Hat Hackers
蓝帽黑客是指在计算机安全咨询公司之外受雇于系统发布前进行故障测试的人员。他们寻找可以利用的漏洞,并尝试关闭这些漏洞。微软也使用术语 BlueHat 来代表一系列安全简报事件。
A blue hat hacker is someone outside computer security consulting firms who is used to bug-test a system prior to its launch. They look for loopholes that can be exploited and try to close these gaps. Microsoft also uses the term BlueHat to represent a series of security briefing events.
Elite Hackers
这是黑客中的一种社交地位,用于表明技术最娴熟的人员。新发现的漏洞会在这些黑客之间流传。
This is a social status among hackers, which is used to describe the most skilled. Newly discovered exploits will circulate among these hackers.
Script Kiddie
脚本小子是一个非专家,他们使用别人编写的事先封装的自动化工具入侵计算机系统,通常对底层概念了解甚少,因此有了 Kiddie 一词。
A script kiddie is a non-expert who breaks into computer systems by using pre-packaged automated tools written by others, usually with little understanding of the underlying concept, hence the term Kiddie.