 |
Sockets, Shellcode, Porting, and Coding View Larger Image | James C. Foster
Syngress, Paperback, Published April 2005, 667 pages, ISBN 1597490059 | List Price: $49.95
Our Price: $35.50
You Save: $14.45 (29% Off)
| | | Availability: Out-Of-Stock |
Be the First to Write a Review and tell the world about this title!People who purchase this book frequently purchase: - Buffer Overflow Attacks; James C. Foster, et al, $25.50, 27% Off!
- Rootkits: Subverting the Windows Kernel; Greg Hoglund, et al, $34.50, 37% Off!
- Mastering FreeBSD and OpenBSD Security; Bruce Potter, et al, $40.50, 19% Off!
- Reversing: Secrets of Reverse Engineering; Eldad Eilam, $24.95, 38% Off!
Books on similar topics, in best-seller order:Books from the same publisher, in best-seller order:
Elite Programming Techniques Demystified
In this groundbreaking book, best-selling author James C. Foster reveals for
the first time the methods hackers use to attack and exploit the core components
of operating systems and their applications. He provides working code and scripts
in C/C++, Java, Perl, and NASL to detect and defend against the most dangerous
attacks. The book covers in detail the five most important disciplines for security
professionals and software developers: Coding, Sockets, Shellcode, Porting Applications,
and Coding Security Tools.
“Read every page of this book, understand the content, and use it to your
advantage.”—Stuart McClure
· Download the Code
All code lines throughout the book are numbered for easy reference and are available
for download from www.syngress.com/solutions.
· Develop Shellcode
Customize and optimize never-before-seen shellcode that can exploit almost any
system.
· Port Public Exploits
Follow step-by-step instructions for porting exploits to work on Windows, Linux,
UNIX, and even Macs!
· Customize Windows COM Objects
Wrap and automate pre-compiled exploits and security tools such as Nmap, netcat,
and hping.
· Enhance Nikto
Develop customized code to dramatically improve the performance of the Nikto
Web server scanner.
· Reverse Engineer Zero Days
Learn to reverse engineer, modify, and re-automate Zero-Day exploit code.
· Write NASL Scripts
Develop scripts for Nessus to discover the latest vulnerabilities.
· Identify and Target Vulnerabilities
Examine case studies that reveal how attackers identify and exploit security
holes.
· Master Sockets
Detailed code examples demonstrate socket initialization, closing sockets, reading
and writing data.
Your Solutions Membership Gives You Access to:
A comprehensive FAQ page that consolidates all of the key points of this book
into an easy-to-search Web page
“From the Author” Forum where the authors post timely updates and
links to related sites
The complete code listings from the book
Downloadable chapters from these best-selling books:
Buffer Overflow Attacks: Detect, Exploit, Prevent
Programmer's Ultimate Security DeskRef
Hacking the Code: ASP.NET Web Application Security
Nessus Network Auditing
Table of Contents
Security Coding
NASL Scripting
BSD Sockets
Windows Sockets (Winsock)
Java Sockets
Writing Portable Code
Portable Network Programming
Writing Shellcode (I and II)
Writing Exploits (I, II, and III)
Writing Security Components
Creating a Web Security Tool
Glossary
Security Tool Compendium
Exploit Archives
Syscall Reference
Data Conversion Reference
About the Authors
James C. Foster, Fellow is the Deputy Director of Global Security Solution
Development for Computer Sciences Corporation where he is responsible for the
vision and development of physical, personnel, and data security solutions.
Prior to CSC, Foster was the Director of Research and Development for Foundstone
Inc. (acquired by McAfee) and was responsible for all aspects of product, consulting,
and corporate R&D initiatives. Foster is a seasoned speaker and has presented
throughout North America at conferences, technology forums, security summits,
and research symposiums with highlights at the Microsoft Security Summit, Black
Hat USA, Black Hat Windows, MIT Wireless Research Forum, SANS, MilCon, TechGov,
InfoSec World 2001, and the Thomson Security Conference. He also is commonly
asked to comment on pertinent security issues and has been sited in USAToday,
Information Security Magazine, Baseline, Computer World, Secure Computing, and
the MIT Technologist. Foster is also a well published author with multiple commercial
and educational papers; and has authored, contributed, or edited for major publications
to include Snort 2.1 Intrusion Detection (Syngress Publishing, ISBN: 1-931836-04-3),
Hacking Exposed, Fourth Edition, Anti-Hacker Toolkit, Second Edition, Advanced
Intrusion Detection, Hacking the Code: ASP.NET Web Application Security (Syngress,
ISBN: 1-932266-65-8), Anti-Spam Toolkit, and the forthcoming Google Hacking
for Penetration Techniques (Syngress, ISBN: 1-931836-36-1) .
Stuart McClure, CISSP, CNE, CCSE, is Senior Vice President of Risk Management
Product Development at McAfee, Inc., where he is responsible for driving product
strategy and marketing for the McAfee Foundstone family of risk mitigation and
management solutions. McAfee Foundstone saves countless millions in revenue
and man-hours annually in recovering from hacker attacks, viruses, worms, and
malware. Prior to his role at McAfee, Stuart was Founder, President and Chief
Technology Officer of Foundstone, Inc., which was acquired by McAfee in October
of 2004. Widely recognized for his extensive and in-depth knowledge of security
products, Stuart is considered one of the industry’s leading authorities
in information security today. Prior to joining Foundstone, Stuart held a variety
of leadership positions in security and IT management, with Ernst & Young’s
National Security Profiling Team, two years as an industry analyst with InfoWorld’s
Test Center, five years as Director of IT with both state and local California
government, two years as owner of an IT consultancy, and two years in IT with
University of Colorado, Boulder.
|
|
