The Shellcoder's Handbook
Discovering and Exploiting Security Holes
(Sprache: Englisch)
The black hats have kept up with security enhancements. Have you? In the technological arena, three years is a lifetime. Since the first edition of this book was published in 2004, built-in security measures on compilers and operating systems have become...
lieferbar
versandkostenfrei
Buch (Kartoniert)
43.20 €
- Lastschrift, Kreditkarte, Paypal, Rechnung
- Kostenlose Rücksendung
Produktdetails
Produktinformationen zu „The Shellcoder's Handbook “
Klappentext zu „The Shellcoder's Handbook “
The black hats have kept up with security enhancements. Have you? In the technological arena, three years is a lifetime. Since the first edition of this book was published in 2004, built-in security measures on compilers and operating systems have become commonplace, but are still far from perfect. Arbitrary-code execution vulnerabilities still allow attackers to run code of their choice on your system--with disastrous results. In a nutshell, this book is about code and data and what happens when the two become confused. You'll work with the basic building blocks of security bugs--assembler, source code, the stack, the heap, and so on. You'll experiment, explore, and understand the systems you're running--and how to better protect them. * Become familiar with security holes in Windows, Linux, Solaris, Mac OS X, and Cisco's IOS * Learn how to write customized tools to protect your systems, not just how to use ready-made ones * Use a working exploit to verify your assessment when auditing a network * Use proof-of-concept exploits to rate the significance of bugs in software you're developing * Assess the quality of purchased security products by performing penetration tests based on the information in this book * Understand how bugs are found and how exploits work at the lowest level
Inhaltsverzeichnis zu „The Shellcoder's Handbook “
1. Before You Begin. 2. Stack Overflows. 3. Shellcode. 4. Introduction to Format String Bugs. 5. Introduction to Heap Overflows. 6. The Wild World of Windows. 7. Windows Shellcode. 8. Windows Overflows. 9. Overcoming Filters. 10. Introduction to Solaris Exploitation. 11. Advanced Solaris Exploitation. 12. OS X Shellcode. 13. Cisco IOS Exploitation. 14. Protection Mechnisms. 15. Establishing a Working Environment. 16. Fault Injection. 17. The Art of Fuzzing. 18. Source Code Auditing: Finding Vulnerabilities in C-Based Languages. 19. Instrumented Investigation: A Manual Approach. 20. Tracing For Vulnerabilities. 21. Binary Auditing: Hacking Closed Source Software. 22. Alternative Payload Strategies. 23. Writing Exploits that Work in the Wild. 24. Attacking Database Software. 25. Unix Kernel Overflows. 26. Exploiting Unix Kernel Vulnerabilities. 27. Hacking the Windows Kernel.
Autoren-Porträt von Chris Anley, John Heasman, Felix "FX" Linder, Gerardo Richarte
Chris Anley is a founder and director of NGSSoftware, a UK-based security software, consultancy, and research company.John Heasman is the Director of Research at NGSSoftware.
Felix "FX" Linder leads SABRE Labs GmbH, a Berlin-based security consulting company.
Gerardo Richarte is a co-founder of Core Security Technologies, creators of the revolutionary CORE IMPACT penetration testing tool.
Bibliographische Angaben
- Autoren: Chris Anley , John Heasman , Felix "FX" Linder , Gerardo Richarte
- 2007, 2. Aufl., 752 Seiten, mit Abbildungen, Maße: 19,4 x 23,9 cm, Kartoniert (TB), Englisch
- Verlag: Wiley & Sons
- ISBN-10: 047008023X
- ISBN-13: 9780470080238
- Erscheinungsdatum: 10.08.2007
Sprache:
Englisch
Kommentar zu "The Shellcoder's Handbook"
Schreiben Sie einen Kommentar zu "The Shellcoder's Handbook".
Kommentar verfassen