- Paperback: 550 pages
- Publisher: McGraw-Hill Osborne; 2 edition (1 Feb 2008)
- Language English
- ISBN-10: 0071495681
- ISBN-13: 978-0071495684
- Product Dimensions: 23.4 x 18.6 x 3 cm
- Average Customer Review: 4.8 out of 5 stars See all reviews (4 customer reviews)
- Amazon Bestsellers Rank: 267,016 in Books (See Top 100 in Books)
- See Complete Table of Contents
 Trade In this Item for up to £4.35
Get an extra £5 when you trade in books worth £10 or more until June 30, 2012. Trade in Gray Hat Hacking, Second Edition: The Ethical Hacker's Handbook for an Amazon.co.uk gift card of up to £4.35, which you can then spend on millions of items across the site. Trade-in values may vary (terms apply). Find more products eligible for trade-in.
|
|
There is a newer edition of this item:
|
Product details |
More About the Author
Product Description
Product Description
"A fantastic book for anyone looking to learn the tools and techniques needed to break in and stay in." --Bruce Potter, Founder, The Shmoo Group
"Very highly recommended whether you are a seasoned professional or just starting out in the security business." --Simple Nomad, Hacker
From the Back Cover
Uncover, plug, and ethically disclose security flaws
Prevent catastrophic network attacks by exposing security flaws, fixing them, and ethically reporting them to the software author. Fully expanded to cover the hacker's latest devious methods, Gray Hat Hacking: The Ethical Hacker's Handbook, Second Edition lays out each exploit alongside line-by-line code samples, detailed countermeasures, and moral disclosure procedures. Find out how to execute effective penetration tests, use fuzzers and sniffers, perform reverse engineering, and find security holes in Windows and Linux applications. You'll also learn how to trap and autopsy stealth worms, viruses, rootkits, adware, and malware.
- Implement vulnerability testing, discovery, and reporting procedures that comply with applicable laws
- Learn the basics of programming, stack operations, buffer overflow and heap vulnerabilities, and exploit development
- Test and exploit systems using Metasploit and other tools
- Break in to Windows and Linux systems with perl scripts, Python scripts, and customized C programs
- Analyze source code using ITS4, RATS, FlawFinder, PREfast, Splint, and decompilers
- Understand the role of IDA Pro scripts, FLAIR tools, and third-party plug-ins in discovering software vulnerabilities
- Reverse-engineer software using decompiling, profiling, memory monitoring, and data flow analysis tools
- Reveal client-side web browser vulnerabilities with MangleMe, AxEnum, and AxMan
- Probe Windows Access Controls to discover insecure access tokens, security descriptors, DACLs, and ACEs
- Find and examine malware and rootkits using honeypots, honeynets, and Norman SandBox technology
Inside This Book
(Learn More)
Suggested Tags from Similar Products(What's this?)Be the first one to add a relevant tag (keyword that's strongly related to this product)
|
Sell a Digital Version of This Book in the Kindle Store
If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store.
Learn more
What Other Items Do Customers Buy After Viewing This Item?
Customer Reviews
Most Helpful Customer Reviews
22 of 22 people found the following review helpful
Format:Paperback
An ethical debate could go on for ages as to whether this sort of material could be classed as malicious or useful to the information and security community.
This book will certainly bring the noob up to speed with some of the greatest tools out there such as backtrack and metasploit and certainly will prove to be very useful information for any techie out there wanting to learn about some of the tools and techniques which hackers will use to compromise systems.
The approach by the authors is concise and thorough covering subject such as beginner programming with c, assembly and python while introducing concepts like shellcode scripting and exploit creation in a linux and windows environment.
Alot of this information can be found with alot of work on Google and searching forums and tutorials but is well presented and all located within this single book. The details on each subject are only tipping the iceberg but will certainly serve as an introduction for anyone with an interest in security and penetration testing.
I recommend taking the A+, N+, Linux+, CEH, MCSE and CCNA before trying to enter a career in security but the pay is great when you got them and you will find books on the latest security methods to be breeze to follow and implement
This book will certainly bring the noob up to speed with some of the greatest tools out there such as backtrack and metasploit and certainly will prove to be very useful information for any techie out there wanting to learn about some of the tools and techniques which hackers will use to compromise systems.
The approach by the authors is concise and thorough covering subject such as beginner programming with c, assembly and python while introducing concepts like shellcode scripting and exploit creation in a linux and windows environment.
Alot of this information can be found with alot of work on Google and searching forums and tutorials but is well presented and all located within this single book. The details on each subject are only tipping the iceberg but will certainly serve as an introduction for anyone with an interest in security and penetration testing.
I recommend taking the A+, N+, Linux+, CEH, MCSE and CCNA before trying to enter a career in security but the pay is great when you got them and you will find books on the latest security methods to be breeze to follow and implement
12 of 12 people found the following review helpful
Format:Paperback
This is not really mentioned anywhere, but you're expected to have some understanding of security and programming concepts to understand the majority of the information covered. Its not a 'beginners guide' kind of thing; more an advanced guide for people wanting to specialize in the area of hacking and security.
I would suggest getting at the very least a live cd of your favorite distro of linux to play around with the programming and linux exploit sections of the book.
Overall a fantastic read. Even if you don't plan to enter the field on a business level, if you have interests in computer security its worth getting.
I would suggest getting at the very least a live cd of your favorite distro of linux to play around with the programming and linux exploit sections of the book.
Overall a fantastic read. Even if you don't plan to enter the field on a business level, if you have interests in computer security its worth getting.
8 of 8 people found the following review helpful
Format:Paperback|Amazon Verified Purchase
I've been out the field for a short time as I worked more in development, But have recently got back into penetration testing, this book was a great reference to bring me back up to speed. I would recommend it to anyone.
Would you like to see more reviews about this item?
Were these reviews helpful?
Let us know
Listmania!
|
|
Look for similar items by category
Look for similar items by subject
Feedback
- Would you like to update product info or give feedback on images?
- I am the Author, and I want to comment on my book.
- I am the Publisher, and I want to comment on this book.
