Security Warrior Know Your Enemy

Name: Security Warrior Know Your Enemy
Price: 6.7 USD
Availability: InStock
ISBN: 9780596005450

ISBN-10: 0596005458

ISBN-13: 9780596005450

Edition: 2004

Authors: Cyrus Peikari, Anton Chuvakin

List price: $44.95

30 day, 100% satisfaction guarantee!

Buy new: $31.92

Marketplace

4 new & used from $6.70

what's this?

Rush Rewards U
Members Receive:

You have reached 400 XP and carrot coins. That is the daily max!

When it comes to network security, many users and administrators are running scared, and justifiably so. The sophistication of attacks against computer systems increases with each new Internet worm. What's the worst an attacker can do to you? You'd better find out, right? That's what "Security Warrior teaches you. Based on the principle that the only way to defend yourself is to understand your attacker in depth, "Security Warrior reveals how your systems can be attacked. Covering everything from reverse engineering to SQL attacks, and including topics like social engineering, antiforensics, and common attacks against UNIX and Windows systems, this book teaches you to know your enemy and…

Book details

List price: $44.95
Copyright year: 2004
Publisher: O'Reilly Media, Incorporated
Publication date: 2/3/2004
Binding: Paperback
Pages: 556
Size: 7.00" wide x 9.19" long x 0.98" tall
Weight: 1.694
Language: English

Dr. Anton Chuvakin is a recognized security expert in the field of log management and PCI DSS compliance. He is an author of the books "Security Warrior" and "PCI Compliance" and has contributed to many others, while also publishing dozens of papers on log management, correlation, data analysis, PCI DSS, and security management. His blog (http://www.securitywarrior.org) is one of the most popular in the industry. Additionaly, Anton teaches classes and presents at many security conferences across the world and he works on emerging security standards and serves on the advisory boards of several security start-ups. Currently, Anton is developing his security consulting practice, focusing on…



Preface



Software Cracking



Assembly Language


Registers


ASM Opcodes


References



Windows Reverse Engineering


History of RCE


Reversing Tools


Reverse Engineering Examples


References



Linux Reverse Engineering


Basic Tools and Techniques


A Good Disassembly


Problem Areas


Writing New Tools


References



Windows CE Reverse Engineering


Windows CE Architecture


CE Reverse Engineering Fundamentals


Practical CE Reverse Engineering


Reverse Engineering serial.exe


References



Overflow Attacks


Buffer Overflows


Understanding Buffers


Smashing the Stack


Heap Overflows


Preventing Buffer Overflows


A Live Challenge


References



Network Stalking



TCP/IP Analysis


A Brief History of TCP/IP


Encapsulation


TCP


IP


UDP


ICMP


ARP


RARP


BOOTP


DHCP


TCP/IP Handshaking


Covert Channels


IPv6


Ethereal


Packet Analysis


Fragmentation


References



Social Engineering


Background


Performing the Attacks


Advanced Social Engineering


References



Reconnaissance


Online Reconnaissance


Conclusion


References



OS Fingerprinting


Telnet Session Negotiation


TCP Stack Fingerprinting


Special-Purpose Tools


Passive Fingerprinting


Fuzzy Operating System Fingerprinting


TCP/IP Timeout Detection


References



Hiding the Tracks


From Whom Are You Hiding?


Postattack Cleanup


Forensic Tracks


Maintaining Covert Access


References



Platform Attacks



Unix Defense


Unix Passwords


File Permissions


System Logging


Network Access in Unix


Unix Hardening


Unix Network Defense


References



Unix Attacks


Local Attacks


Remote Attacks


Unix Denial-of-Service Attacks


References



Windows Client Attacks


Denial-of-Service Attacks


Remote Attacks


Remote Desktop/Remote Assistance


References



Windows Server Attacks


Release History


Kerberos Authentication Attacks


Kerberos Authentication Review


Defeating Buffer Overflow Prevention


Active Directory Weaknesses


Hacking PKI


Smart Card Hacking


Encrypting File System Changes


Third-Party Encryption


References



SOAP XML Web Services Security


XML Encryption


XML Signatures


Reference



SQL Injection


Introduction to SQL


SQL Injection Attacks


SQL Injection Defenses


PHP-Nuke Examples


References



Wireless Security


Reducing Signal Drift


Problems with WEP


Cracking WEP


Practical WEP Cracking


VPNs


TKIP


SSL


Airborne Viruses


References



Advanced Defense



Audit Trail Analysis


Log Analysis Basics


Log Examples


Logging States


When to Look at the Logs


Log Overflow and Aggregation


Challenge of Log Analysis


Security Information Management


Global Log Aggregation


References



Intrusion Detection Systems


IDS Examples


Bayesian Analysis


Hacking Through IDSs


The Future of IDSs


Snort IDS Case Study


IDS Deployment Issues


References



Honeypots


Motivation


Building the Infrastructure


Capturing Attacks


References



Incident Response


Case Study: Worm Mayhem


Definitions


Incident Response Framework


Small Networks


Medium-Sized Networks


Large Networks


References



Forensics and Antiforensics


Hardware Review


Information Detritus


Forensics Tools


Bootable Forensics CD-ROMs


Evidence Eliminator


Forensics Case Study: FTP Attack


References



Appendix



Useful SoftICE Commands and Breakpoints


Index