Grey Hat Hacking 2nd Edition
Mc--aw-Hill Osborne Media
2nd Edition | ISBN: 0071495681 | PDF | 550 pages | 11.2 MB
Book Description
“A fantastic book for anyone looking to learn the tools and techniques needed to break in and stay in.” –Bruce Potter, Founder, The Shmoo Group
“Very highly recommended whether you are a seasoned professional or just starting out in the security business.” –Simple Nomad, Hacker
Prevent catastrophic network attacks by exposing security flaws, fixing them, and ethically reporting them to the software author. Fully expanded to cover the hacker's latest devious methods, Gray Hat Hacking: The Ethical Hacker's Handbook, Second Edition lays out each exploit alongside line-by-line code samples, detailed countermeasures, and moral disclosure procedures. Find out how to execute effective penetration tests, use fuzzers and sniffers, perform reverse engineering, and find security holes in Windows and Linux applications. You'll also learn how to trap and autopsy stealth worms, viruses, rootkits, adware, and malware.
Implement vulnerability testing, discovery, and reporting procedures that comply with applicable laws
Learn the basics of programming, stack operations, buffer overflow and heap vulnerabilities, and exploit development
Test and exploit systems using Metasploit and other tools
Break in to Windows and Linux systems with perl scripts, Python scripts, and customized C programs
Analyze source code using ITS4, RATS, FlawFinder, PREfast, Splint, and decompilers
Understand the role of IDA Pro scripts, FLAIR tools, and third-party plug-ins in discovering software vulnerabilities
Reverse-engineer software using decompiling, profiling, memory monitoring, and data flow analysis tools
Reveal client-side web browser vulnerabilities with MangleMe, AxEnum, and AxMan
Probe Windows Access Controls to discover insecure access tokens, security descriptors, DACLs, and ACEs
Find and examine malware and rootkits using honeypots, honeynets, and Norman SandBox technology
“Very highly recommended whether you are a seasoned professional or just starting out in the security business.” –Simple Nomad, Hacker
Prevent catastrophic network attacks by exposing security flaws, fixing them, and ethically reporting them to the software author. Fully expanded to cover the hacker's latest devious methods, Gray Hat Hacking: The Ethical Hacker's Handbook, Second Edition lays out each exploit alongside line-by-line code samples, detailed countermeasures, and moral disclosure procedures. Find out how to execute effective penetration tests, use fuzzers and sniffers, perform reverse engineering, and find security holes in Windows and Linux applications. You'll also learn how to trap and autopsy stealth worms, viruses, rootkits, adware, and malware.
Implement vulnerability testing, discovery, and reporting procedures that comply with applicable laws
Learn the basics of programming, stack operations, buffer overflow and heap vulnerabilities, and exploit development
Test and exploit systems using Metasploit and other tools
Break in to Windows and Linux systems with perl scripts, Python scripts, and customized C programs
Analyze source code using ITS4, RATS, FlawFinder, PREfast, Splint, and decompilers
Understand the role of IDA Pro scripts, FLAIR tools, and third-party plug-ins in discovering software vulnerabilities
Reverse-engineer software using decompiling, profiling, memory monitoring, and data flow analysis tools
Reveal client-side web browser vulnerabilities with MangleMe, AxEnum, and AxMan
Probe Windows Access Controls to discover insecure access tokens, security descriptors, DACLs, and ACEs
Find and examine malware and rootkits using honeypots, honeynets, and Norman SandBox technology
About the Author
Shon Harris, MCSE, CISSP, is the president of Logical Security, an educator, and a security consultant.
Allen Harper, CISSP, is the president and owner of n2netsecurity, Inc., in North Carolina.
Chris Eagle is the associate chairman of the Computer Science Department at the Naval Postgraduate School (NPS) in Monterey, California.
Allen Harper, CISSP, is the president and owner of n2netsecurity, Inc., in North Carolina.
Chris Eagle is the associate chairman of the Computer Science Department at the Naval Postgraduate School (NPS) in Monterey, California.
==============================================
0 comments:
Post a Comment