View Larger Image	Neil R. Wyler Syngress, Paperback, Published February 2005, 383 pages, ISBN 1931836205
	List Price: $49.95 Our Price: $35.50 You Save: $14.45 (29% Off)
	Availability: Out-Of-Stock

Read an excerpt: Chapter 7: The Fight for the Primulus Network: Yaseen vs Nathan       Excerpt provided courtesy of Syngress.

People who purchase this book frequently purchase:

• Intrusion Prevention and Active Response; Michael Rash, et al, $34.95, 30% Off!
• Buffer Overflow Attacks; James C. Foster, et al, $25.50, 27% Off!
• Silence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks; Michal Zalewski, $23.95, 40% Off!
• The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders, and Deceivers; Kevin Mitnick, $17.50, 36% Off!

• Enterprise Computing : Security
• Networking/Communications : Networking

• Syngress

· Analyze the Technical, Legal, and Financial Ramifications of Revolutionary and Controversial Network Strike-Back and Active Defense Techniques

* Follow the Travails of Eight System Administrators Who Take Cyber Law into Their Own Hands
* See Chillingly Realistic Examples of Everything from a PDA to the MD5 Hash Being Used as Weapons in Cyber Dogfights

There is a certain satisfaction for me in seeing this book published. When I presented my “strike-back” concept to the security community years ago, I was surprised by the ensuing criticism from my peers. I thought they would support our right to defend ourselves, and that the real challenge would be educating the general public. It was the other way around, however. This is why I’m happy to see Aggressive Network Self-Defense published. It shows that people are beginning to consider the reality of today’s Internet. Many issues are not black and white, right or wrong, legal or illegal. Some of the strike-back approaches in this book I support. Others, I outright disagree with. But that’s good—it gives us the chance to truly think about each situation—and thinking is the most important part of the security business. Now is the time to analyze the technologies and consider the stories presented in this book before fiction becomes reality.—Timothy M. Mullen, CIO and Chief Software Architect for AnchorIS.Com

· When the Worm Turns…
Analyze the technical and legal implications of “neutralizing” machines that propagate malicious worms across the Internet.

· Are You the Hunter or the Hunted?
Discover for yourself how easy it is to cross the line from defender to aggressor, and understand the potential consequences.

· Reverse Engineer Working Trojans, Viruses, and Keyloggers
Perform forensic analysis of malicious code attacking a Pocket PC to track down, identify, and strike back against the attacker.

· To Catch a Thief…
Track stolen software as it propagates through peer-to-peer networks and learn to bypass MD5 checksum verification to allow multiple generations of attackers to be traced.

· Learn the Definition of “Hostile Corporate Takeover” in Cyberspace
Find out who will own the fictional Primulus Corporation as attacker and defender wage war.

· Understand the Active Defense Algorithm Model (ADAM)
Analyze the primary considerations of implementing an active defense strategy in your organization: ethical, legal, unintended consequences, and risk validation.

· See What Can Happen when the Virtual World Meets the Real World
Use keyloggers, Bluetooth device exploitation, and Windows forensics to discover if your cubicle mate has been stealing more than post-it notes.

· Where the Wild Things Are…
Follow along as a real-life “in-the-wild” format string bug is morphed into strike-back code that launches a listening shell on the attacker's own machine.

· Implement Passive Strike-Back Technologies
Learn the strategy and implement the tools for responding to footprinting, network reconnaissance, vulnerability scanning, and exploit code.

Your Solutions Membership Gives You Access to:

A comprehensive FAQ page that consolidates all of the key points of this book into an easy-to-search Web page

“From the Author” Forum where the authors post timely updates and links to related sites

The complete code listings from the book

Downloadable chapters from these best-selling books:

Black Hat Physical Device Security

Google Hacking for Penetration Testers

Buffer Overflow Attacks: Detect, Exploit, Prevent

Hacking a Terror Network: The Silent Threat of Covert Channels

Table of Contents

Part I Fictionalized Cases of Network Strike-Back, Self-Defense, and Revenge

Chapter 1 PDA Perils: Revenge from the Palm of Your Hand

Chapter 2 The Case of a WLAN Attacker: In the Booth

Chapter 3 MD5: Exploiting the Generous

Chapter 4 A VPN Victim’s Story: Jack’s Smirking Revenge

Chapter 5 Network Protection: Cyber-Attacks Meet Physical Response

Chapter 6 Network Insecurity: Taking Patch Management to the Masses

Chapter 7 The Fight for the Primulus Network: Yaseen vs Nathan

Chapter 8 Undermining the Network: A Breach of Trust

Part II The Technologies and Concepts Behind Network Strike Back

Chapter 9 ADAM: Active Defense Algorithm and Model

Chapter 10 Defending Your Right to Defend

Chapter 11 MD5 to Be Considered Harmful Someday

Chapter 12 When the Tables Turn: Passive Strike-Back 339

About the Authors

Neil Archibald is a security professional from Sydney, Australia. He works for Computer Sciences Corporation (CSC) as a member of a team called Strike Force and develops IDS. He has a strong interest in systems internals, code auditing/exploit development, and development.

Seth Fogie is the Vice President of Dallas-based Airscanner Corporation, where he oversees the development of security software for the Window Mobile (Pocket PC) platform. He has coauthored numerous technical books on information security, including Maximum Wireless Security and Security Warrior. Seth frequently speaks at IT and security conferences/seminars, including the Black Hat Briefings, Def Con, CSI, and Dallascon. In addition, Seth has coauthored the HIPAA medical education course for the Texas Medical Associates and is acting Site Host for Security at the InformIT.com Web site, where he writes articles and reviews and manages weekly books and articles related to information security.

Chris Hurley (aka Roamer) is a principal information security engineer working in the Washington, D.C., area. He is the founder of the WorldWide WarDrive, an effort by information security professionals and hobbyists to generate awareness of the insecurities associated with wireless networks. Primarily focusing his efforts on vulnerability assessments, he also performs penetration testing, forensics, and incident response operations on both wired and wireless networks. He has spoken at several security conferences, been published in numerous online and print publications, and been the subject of several interviews and stories regarding the WorldWide WarDrive. He is the primary organizer of the WarDriving Contest held at the annual Def Con hacker conference. Chris is co-author of WarDriving: Drive, Detect, Defend (Syngress Publishing, ISBN: 1-931836-03-5).

Dan Kaminsky, also known as Effugas, is a Senior Security Consultant for Avaya’s Enterprise Security Practice, where he works on large-scale security infrastructure. Dan’s experience includes two years at Cisco Systems, where he designed security infrastructure for cross-organization network monitoring systems. He is best known for his work on the ultra-fast port scanner, scanrand, part of the “Paketto Keiretsu,” a collection of tools that use new and unusual strategies for manipulating TCP/IP networks. He authored the “Spoofing” and “Tunneling” chapters for Hack Proofing Your Network: Second Edition (Syngress Publishing, ISBN: 1-928994-70-9), and has delivered presentations at several major industry conferences, including LinuxWorld, Def Con, and past Black Hat Briefings.

Johnny Long has spoken on network security and Google hacking at several computer security conferences around the world, including SANS, Def Con, and the Black Hat Briefings. During his recent career with Computer Sciences Corporation (CSC), a leading global IT services company, he has performed active network and physical security assessments for hundreds of government and commercial clients. His Web site, currently the Internet’s largest repository of Google hacking techniques, can be found at http://johnny.ihackstuff.com.

Haroon Meer is the Director currently in charge of development and QA at SensePost. He joined SensePost in 2001 and has played in most aspects of IT security from development to deployment and currently gets most of his kicks from reverse engineering, application assessments, and similar areas. Haroon has spoken and trained at the Black Hat Briefings, Def Con, Microsoft Tech-Ed, and other conferences. He loves “Deels,” building new things, breaking new things, reading, and making up new words.

Bruce Potter is a Senior Associate at Booz Allen Hamilton. Prior to working at Booz Allen Hamilton, Bruce served as a software security consultant for Cigital in Dulles, VA. Bruce is the founder of the Shmoo Group of security professionals. His areas of expertise include wireless security, large-scale network architectures, smartcards, and promotion of secure software engineering practices. Bruce coauthored the books 802.11 Security and Mac OS X Security. He was trained in computer science at the University of Alaska, Fairbanks.

Roelof Temmingh is the Technical Director and a founding member of SensePost, a South African IT security assessment company. After completing his degree in electronic engineering, he worked for four years at a leading software engineering company, where he specialized in encryption devices and firewalls. In 2000 he started SensePost along with some of the country’s leaders in IT security. Roelof heads SensePost’s external security analysis team, and in his “spare time” plays with interesting concepts such as footprint and Web application automation, worm propagation techniques, covert channels/Trojans, and cyber-warfare. Roelof is a regular speaker/trainer at international conferences, including the Black Hat Briefings, Def Con, RSA, FIRST, and Summercon.

Neil R. Wyler (aka Grifter) is an Information Security Engineer and Researcher currently located on the Wasatch Front in Utah. He is a staff member of the Black Hat Security Briefings, Def Con hacker conference, ApacheCon, and Gnomedex. He has spoken at numerous security conferences and been the subject of various online, print, film, and television interviews regarding different areas of information security. He is highly involved in the hacker community and helps organize and support many of the local hacker meetings, including DC801 and 2600SLC. He also serves on the advisory board for a local technical college. Neil was born and raised on Long Island, NY, before entering military service with the U.S. Air Force. He is currently the co-owner of a Utah-based consulting firm with clients worldwide.

Tim Mullen (aka Thor) began his career in application development and network integration in 1984, and is now CIO and Chief Software Architect for AnchorIS.Com, a developer of secure enterprise-based accounting solutions. Mullen has developed and implemented network and security solutions for institutions such as the U.S. Air Force, Microsoft, the U.S. Federal Court systems, regional power generation facilities, and international banking and financial institutions. He has developed applications ranging from military aircraft statistics interfaces and biological aqua-culture management, to nuclear power-plant effect monitoring for a myriad of private, government, and military entities. Tim is also a columnist for Security Focus’ Microsoft section, and a regular contributor of InFocus technical articles. Also known as “Thor,” he is the founder of the “Hammer of God” security co-op group. Mullen’s writings appear in multiple publications, such as Stealing the Network: How to Own the Box (Syngress, ISBN: 1-931836-87-6) and Hacker's Challenge, technical edits in Windows XP Security, with security tools and techniques features in publications such as the Hacking Exposed series and New Scientist magazine.

Forgot your password? FAQs Shipping Options Returns Your Orders Your Account