Bookpool: Malware: Fighting Malicious Code

NEW RELEASES

BEST SELLERS

SUBJECTS

PUBLISHERS

PROMOTIONS

ARTICLES

Malware: Fighting Malicious Code

View Larger Image	Ed Skoudis, Lenny Zeltser Prentice Hall, Paperback, Published November 2003, 647 pages, ISBN 0131014056
	List Price: $59.99 Our Price: $37.95 You Save: $22.04 (37% Off)
	Availability: Out-Of-Stock

Be the First to Write a Review and tell the world about this title!

People who purchase this book frequently purchase:

Microsoft Windows Internals, 4th Edition: Microsoft Windows Server 2003, Windows XP, and Windows 2000; Mark E. Russinovich, et al, $37.50, 37% Off!
Rootkits: Subverting the Windows Kernel; Greg Hoglund, et al, $34.50, 37% Off!
The Art of Computer Virus Research and Defense; Peter Szor, $34.95, 36% Off!
Hacking Exposed: Network Security Secrets & Solutions, 5th Edition; Joel Scambray, et al, $30.50, 39% Off!

Books on similar topics, in best-seller order:

Enterprise Computing : Security

Books from the same publisher, in best-seller order:

Prentice Hall

Reveals how attackers install malicious code and how they evade detection
Shows how you can defeat their schemes and keep your computers and network safe!
Details viruses, worms, backdoors, Trojan horses, RootKits, and other threats
Explains how to handle today's threats, with an eye on handling the threats to come

"This is a truly outstanding book-enormous technical wealth and beautifully written."
—Warwick Ford

"Ed does it again, piercing the veil of mystery surrounding many of the more technical aspects of computer security!"
—Harlan Carvey, CISSP

"This book is entertaining and informative, while justifiably scaring you. Luckily it also tells you how to protect yourself, but makes you realize it's going to be a permanent spy-vs-spy struggle."
—Radia Perlman, Distinguished Engineer, Sun Microsystems

Keep control of your systems out of the hands of unknown attackers
Ignoring the threat of malware is one of the most reckless things you can do in today's increasingly hostile computing environment. Malware is malicious code planted on your computer, and it can give the attacker a truly alarming degree of control over your system, network, and data-all without your knowledge! Written for computer pros and savvy home users by computer security expert Edward Skoudis, Malware: Fighting Malicious Code covers everything you need to know about malware, and how to defeat it!

This book devotes a full chapter to each type of malware-viruses, worms, malicious code delivered through Web browsers and e-mail clients, backdoors, Trojan horses, user-level RootKits, and kernel-level manipulation. You'll learn about the characteristics and methods of attack, evolutionary trends, and how to defend against each type of attack. Real-world examples of malware attacks help you translate thought into action, and a special defender's toolbox chapter shows how to build your own inexpensive code analysis lab to investigate new malware specimens on your own. Throughout, Skoudis' clear, engaging style makes the material approachable and enjoyable to learn. This book includes:

Solutions and examples that cover both UNIX and Windows
Practical, time-tested, real-world actions you can take to secure your systems
Instructions for building your own inexpensive malware code analysis lab so you can get familiar with attack and defensive tools harmlessly!

Malware: Fighting Malicious Code is intended for system administrators, network personnel, security personnel, savvy home computer users, and anyone else interested in keeping their systems safe from attackers.

About the Authors

Ed Skoudis is the Vice President of Security Strategy for Predictive Systems. His responsibilities include supporting the development and continual improvement of services for Predictive's Global Integrity Information Security and Managed Services business units.
Ed's expertise includes hacker attacks and defenses, the information security industry, and computer privacy issues. He has performed numerous security assessments, designed secure network architectures, and responded to computer attacks. Ed has focused on identifying and resolving security vulnerabilities on UNIX, Windows NT, firewall architectures, and Web applications.
A frequent speaker on issues associated with hacker tools and effective defenses, Ed has published several articles on these topics, as well as the Prentice Hall book Counter Hack: A Step-by-Step Guide to Computer Attacks and Effective Defenses. He has also conducted a demonstration of hacker techniques for the U.S. Senate.
Ed graduated from the University of Michigan and received his Master of Science degree in Information Networking from Carnegie Mellon University. His prior experience before joining Predictive Systems includes Bell Communications Research.

Lenny Zeltser's work in information security draws upon experience in system administration, software architecture, and independent research. Lenny has worked as a consultant to a major financial institution and has co-founded a software company, and is presently a Director of Information Security at Kiodex, Inc. He has also written and presented coursework for the SANS Institute and reverse-engineered malicious software; he is an active member of several security certification advisory boards as well.
Lenny holds a number of professional certifications, including MCSE, CCSE, GCFW, GCIA, GCUX, and GCIH. He earned a bachelor's degree in computer science engineering from the University of Pennsylvania. He is the producer and a co-author of Inside Network Perimeter Security, to be published by New Riders Publishing.

Table of Contents

Foreword.

Acknowledgments.

1. Introduction.

Defining the Problem. Why Is Malicious Code So Prevalent? Types of Malicious Code. Malicious Code History. Why This Book? What To Expect. References.

2. Viruses.

The Early History of Computer Viruses. Infection Mechanisms and Targets. Virus Propagation Mechanisms. Defending against Viruses. Malware Self-Preservation Techniques. Conclusions. Summary. References.

3. Worms.

Why Worms? A Brief History of Worms. Worm Components. Impediments to Worm Spread. The Coming Super Worms. Bigger Isn't Always Better: The Un-Super Worm. Worm Defenses. Conclusions. Summary. References.

4. Malicious Mobile Code.

Browser Scripts. ActiveX Controls. Java Applets. Mobile Code in E-Mail Clients. Distributed Applications and Mobile Code. Additional Defenses against Malicious Mobile Code. Conclusions. Summary. References.

5. Backdoors.

Different Kinds of Backdoor Access. Installing Backdoors. Starting Backdoors Automatically. All-Purpose Network Connection Gadget: Netcat. Network Computing. Backdoors without Ports. Conclusions. Summary. References.

6. Trojan Horses.

What's in a Name? Wrap Stars. Trojaning Software Distribution Sites. Poisoning the Source. Co-opting a Browser: Setiri. Hiding Data in Executables: Stego and Polymorphism. Conclusions. Summary. References.

7. User-Mode RootKits.

UNIX User-mode RootKits. Windows User-Mode RootKits. Conclusions. Summary. References.

8. Kernel-Mode RootKits.

What Is the Kernel? Kernel Manipulation Impact. The Linux Kernel. The Windows Kernel. Conclusions. Summary. References.

9. Going Deeper.

Setting the Stage: Different Layers of Malware. Going Deeper: The Possibility of BIOS and Malware Microcode. Combo Malware. Conclusions. Summary. References.

10. Scenarios.

Scenario 1: A Fly in the Ointment. Scenario 2: Invasion of the Kernel Snatchers. Scenario 3: Silence of the Worms. Conclusions. Summary.

11. Malware Analysis.

Building a Malware Analysis Laboratory. Malware Analysis Process. Conclusion. Summary. References.

12. Conclusion.

Useful Web Sites for Keeping Up. Parting Thoughts.

Index.

Forgot your password?
FAQs Shipping Options
Returns Your Orders
Your Account