Harris - Gray Hat Hacking 2e (McGraw, 2007).pdf - Najnowsze ksiazki(10) - walbo48

Praise for Gray Hat Hacking: The Ethical Hacker’s Handbook, Second Edition

“ Gray Hat Hacking, Second Edition takes a very practical and applied approach to learning

how to attack computer systems. The authors are past Black Hat speakers, trainers, and

DEF CON CtF winners who know what they are talking about.”

—Jeff Moss

Founder and Director of Black Hat

“The second edition of Gray Hat Hacking moves well beyond current ‘intro to hacking’

books and presents a well thought-out technical analysis of ethical hacking. Although

the book is written so that even the uninitiated can follow it well, it really succeeds by

treating every topic in depth; offering insights and several realistic examples to reinforce

each concept. The tools and vulnerability classes discussed are very current and can be

used to template assessments of operational networks.”

—Ronald C. Dodge Jr., Ph.D.

Associate Dean, Information and Education Technology, United States Military Academy

“An excellent introduction to the world of vulnerability discovery and exploits. The

tools and techniques covered provide a solid foundation for aspiring information secu-

rity researchers, and the coverage of popular tools such as the Metasploit Framework

gives readers the information they need to effectively use these free tools.”

—Tony Bradley

CISSP, Microsoft MVP, About.com Guide for Internet/Network Security,

http://netsecurity.about.com

“ Gray Hat Hacking, Second Edition provides broad coverage of what attacking systems is

all about. Written by experts who have made a complicated problem understandable by

even the novice, Gray Hat Hacking, Second Edition is a fantastic book for anyone looking

to learn the tools and techniques needed to break in and stay in.”

—Bruce Potter

Founder, The Shmoo Group

“As a security professional and lecturer, I get asked a lot about where to start in the secu-

rity business, and I point them to Gray Hat Hacking . Even for seasoned professionals

who are well versed in one area, such as pen testing, but who are interested in another,

like reverse engineering, I still point them to this book. The fact that a second edition is

coming out is even better, as it is still very up to date. Very highly recommended.”

—Simple Nomad

Hacker

ABOUT THE AUTHORS

Shon Harris , MCSE, CISSP, is the president of Logical Security, an educator and security

consultant. She is a former engineer of the U.S. Air Force Information Warfare unit and

has published several books and articles on different disciplines within information

security. Shon was also recognized as one of the top 25 women in information security

by Information Security Magazine.

Allen Harper , CISSP, is the president and owner of n2netSecurity, Inc. in North

Carolina. He retired from the Marine Corps after 20 years. Additionally, he has served as

a security analyst for the U.S. Department of the Treasury, Internal Revenue Service,

Computer Security Incident Response Center (IRS CSIRC). He speaks and teaches at

conferences such as Black Hat.

Chris Eagle is the associate chairman of the Computer Science Department at the Naval

Postgraduate School (NPS) in Monterey, California. A computer engineer/scientist for

22 years, his research interests include computer network attack and defense, computer

forensics, and reverse/anti-reverse engineering. He can often be found teaching at Black

Hat or playing capture the flag at Defcon.

Jonathan Ness , CHFI, is a lead software security engineer at Microsoft. He and his

coworkers ensure that Microsoft’s security updates comprehensively address reported

vulnerabilities. He also leads the technical response of Microsoft’s incident response

process that is engaged to address publicly disclosed vulnerabilities and exploits target-

ing Microsoft software. He serves one weekend each month as a security engineer in a

reserve military unit.

Disclaimer: The views expressed in this book are those of the author and not of the U.S. govern-

ment or the Microsoft Corporation.

About the Technical Editor

Michael Baucom is a software engineer working primarily in the embedded software

area. The majority of the last ten years he has been writing system software and tools for

networking equipment; however, his recent interests are with information security and

more specifically securing software. He co-taught Exploiting 101 at Black Hat in 2006.

For fun, he has enjoyed participating in capture the flag at Defcon for the last two years.

Gray Hat

TheEthicalHacker’s

Handbook

Shon Harris, Allen Harper, Chris Eagle,

and Jonathan Ness

New York • Chicago • San Francisco • Lisbon

London • Madrid • Mexico City • Milan • New Delhi

San Juan • Seoul • Singapore • Sydney • Toronto

Hacking

Second Edition

permitted under the United States Copyright Act of 1976, no part of this publication may be reproduced or distributed in any form

or by any means, or stored in a database or retrieval system, without the prior written permission of the publisher.

0-07-159553-8

The material in this eBook also appears in the print version of this title: 0-07-149568-1.

All trademarks are trademarks of their respective owners. Rather than put a trademark symbol after every occurrence of a

trademarked name, we use names in an editorial fashion only, and to the benefit of the trademark owner, with no intention of

infringement of the trademark. Where such designations appear in this book, they have been printed with initial caps.

McGraw-Hill eBooks are available at special quantity discounts to use as premiums and sales promotions, or for use in corporate

training programs. For more information, please contact George Hoare, Special Sales, at george_hoare@mcgraw-hill.com or (212)

904-4069.

This is a copyrighted work and The McGraw-Hill Companies, Inc. (“McGraw-Hill”) and its licensors reserve all rights in and to

the work. Use of this work is subject to these terms. Except as permitted under the Copyright Act of 1976 and the right to store

and retrieve one copy of the work, you may not decompile, disassemble, reverse engineer, reproduce, modify, create derivative

works based upon, transmit, distribute, disseminate, sell, publish or sublicense the work or any part of it without McGraw-Hill’s

prior consent. You may use the work for your own noncommercial and personal use; any other use of the work is strictly

prohibited. Your right to use the work may be terminated if you fail to comply with these terms.

THE WORK IS PROVIDED “AS IS.” McGRAW-HILL AND ITS LICENSORS MAKE NO GUARANTEES OR

WARRANTIES AS TO THE ACCURACY, ADEQUACY OR COMPLETENESS OF OR RESULTS TO BE OBTAINED

FROM USING THE WORK, INCLUDING ANY INFORMATION THAT CAN BE ACCESSED THROUGH THE WORK VIA

HYPERLINK OR OTHERWISE, AND EXPRESSLY DISCLAIM ANY WARRANTY, EXPRESS OR IMPLIED, INCLUDING

BUT NOT LIMITED TO IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR

PURPOSE. McGraw-Hill and its licensors do not warrant or guarantee that the functions contained in the work will meet your

requirements or that its operation will be uninterrupted or error free. Neither McGraw-Hill nor its licensors shall be liable to you

or anyone else for any inaccuracy, error or omission, regardless of cause, in the work or for any damages resulting therefrom.

McGraw-Hill has no responsibility for the content of any information accessed through the work. Under no circumstances shall

McGraw-Hill and/or its licensors be liable for any indirect, incidental, special, punitive, consequential or similar damages that

result from the use of or inability to use the work, even if any of them has been advised of the possibility of such damages. This

limitation of liability shall apply to any claim or cause whatsoever whether such claim or cause arises in contract, tort or

otherwise.

DOI: 10.1036/0071495681

Harris - Gray Hat Hacking 2e (McGraw, 2007).pdf

Plik z chomika:

Inne pliki z tego folderu:

Inne foldery tego chomika: