Security Books

Hacking: The Art of Exploitation, 2nd Edition

Jon Erickson

Amazon Price: $32.97 List Price: $49.95 Usually ships in 24 hours By: No Starch Press Amazon Marketplace: 54 new & used starting at $26.00

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Business & Culture -> Hacking
Subjects -> Computers & Internet -> Business & Culture -> Security
Subjects -> Computers & Internet -> Networking -> Network Security

Customer Reviews:
Total reviews: 51 Average rating: 4.5 of 5

Editorial Review:

Hacking is the art of creative problem solving, whether that means finding an unconventional solution to a difficult problem or exploiting holes in sloppy programming. Many people call themselves hackers, but few have the strong technical foundation needed to really push the envelope.

Rather than merely showing how to run existing exploits, author Jon Erickson explains how arcane hacking techniques actually work. To share the art and science of hacking in a way that is accessible to everyone, Hacking: The Art of Exploitation, 2nd Edition introduces the fundamentals of C programming from a hacker's perspective.

The included LiveCD provides a complete Linux programming and debugging environment--all without modifying your current operating system. Use it to follow along with the book's examples as you fill gaps in your knowledge and explore hacking techniques on your own. Get your hands dirty debugging code, overflowing buffers, hijacking network communications, bypassing protections, exploiting cryptographic weaknesses, and perhaps even inventing new exploits. This book will teach you how to:

• Program computers using C, assembly language, and shell scripts
• Corrupt system memory to run arbitrary code using buffer overflows and format strings
• Inspect processor registers and system memory with a debugger to gain a real understanding of what is happening
• Outsmart common security measures like nonexecutable stacks and intrusion detection systems
• Gain access to a remote server using port-binding or connect-back shellcode, and alter a server's logging behavior to hide your presence
• Redirect network traffic, conceal open ports, and hijack TCP connections
• Crack encrypted wireless traffic using the FMS attack, and speed up brute-force attacks using a password probability matrix

Hackers are always pushing the boundaries, investigating the unknown, and evolving their art. Even if you don't already know how to program, Hacking: The Art of Exploitation, 2nd Edition will give you a complete picture of programming, machine architecture, network communications, and existing hacking techniques. Combine this knowledge with the included Linux environment, and all you need is your own creativity.

The Art of Deception: Controlling the Human Element of Security

Kevin D. Mitnick, William L. Simon

Amazon Price: $11.53 List Price: $16.95 Usually ships in 24 hours By: Wiley Amazon Marketplace: 74 new & used starting at $4.98

Buy at Amazon.com

Browse similar items by category:
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General AAS
Subjects -> Business & Investing -> Industries & Professions -> MIS

Customer Reviews:
Total reviews: 123 Average rating: 4.0 of 5

Editorial Review:

The world's most infamous hacker offers an insider's view of the low-tech threats to high-tech security
Kevin Mitnick's exploits as a cyber-desperado and fugitive form one of the most exhaustive FBI manhunts in history and have spawned dozens of articles, books, films, and documentaries. Since his release from federal prison, in 1998, Mitnick has turned his life around and established himself as one of the most sought-after computer security experts worldwide. Now, in The Art of Deception, the world's most notorious hacker gives new meaning to the old adage, "It takes a thief to catch a thief."
Focusing on the human factors involved with information security, Mitnick explains why all the firewalls and encryption protocols in the world will never be enough to stop a savvy grifter intent on rifling a corporate database or an irate employee determined to crash a system. With the help of many fascinating true stories of successful attacks on business and government, he illustrates just how susceptible even the most locked-down information systems are to a slick con artist impersonating an IRS agent. Narrating from the points of view of both the attacker and the victims, he explains why each attack was so successful and how it could have been prevented in an engaging and highly readable style reminiscent of a true-crime novel. And, perhaps most importantly, Mitnick offers advice for preventing these types of social engineering hacks through security protocols, training programs, and manuals that address the human element of security.

The Best of 2600: A Hacker Odyssey

Emmanuel Goldstein

Amazon Price: $26.39 List Price: $39.99 Usually ships in 24 hours By: Wiley Amazon Marketplace: 51 new & used starting at $21.07

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Business & Culture -> Hacking
Subjects -> Computers & Internet -> Business & Culture -> History
Subjects -> Computers & Internet -> Business & Culture -> Security

Customer Reviews:
Total reviews: 8 Average rating: 5.0 of 5

An important part of the history of computing 5 out of 5 stars.
3 of 3 people found this review helpful.

The hacker ethos is beautifully captured in this anthology. I've often skimmed 2600 at bookstores but it was only when I went through this hefty tome that I realized how deep and rich are the culture and accomplishments of the hacking community.

More than just the cartoonish representation in popular media, the hacking movement is a testament to creativity and innovation. Rightly so, this book is a celebration of cleverness and ingenious engineering instead of the more malevolent applications.

Editorial Review:

Since 1984, the quarterly magazine 2600 has provided fascinating articles for readers who are curious about technology. Find the best of the magazine’s writing in Best of 2600: A Hacker Odyssey, a collection of the strongest, most interesting, and often most controversial articles covering 24 years of changes in technology, all from a hacker’s perspective. Included are stories about the creation of the infamous tone dialer “red box” that allowed hackers to make free phone calls from payphones, the founding of the Electronic Frontier Foundation, and the insecurity of modern locks.

The Art of Intrusion: The Real Stories Behind the Exploits of Hackers, Intruders & Deceivers

Kevin D. Mitnick, William L. Simon

Amazon Price: $20.08 List Price: $27.50 Usually ships in 24 hours By: Wiley Amazon Marketplace: 60 new & used starting at $4.37

Buy at Amazon.com

Browse similar items by category:
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General AAS
Subjects -> Computers & Internet -> Business & Culture -> Hacking

Customer Reviews:
Total reviews: 39 Average rating: 4.0 of 5

Editorial Review:

Hacker extraordinaire Kevin Mitnick delivers the explosive encore to his bestselling The Art of Deception
Kevin Mitnick, the world's most celebrated hacker, now devotes his life to helping businesses and governments combat data thieves, cybervandals, and other malicious computer intruders. In his bestselling The Art of Deception, Mitnick presented fictionalized case studies that illustrated how savvy computer crackers use "social engineering" to compromise even the most technically secure computer systems. Now, in his new book, Mitnick goes one step further, offering hair-raising stories of real-life computer break-ins-and showing how the victims could have prevented them. Mitnick's reputation within the hacker community gave him unique credibility with the perpetrators of these crimes, who freely shared their stories with him-and whose exploits Mitnick now reveals in detail for the first time, including:

• A group of friends who won nearly a million dollars in Las Vegas by reverse-engineering slot machines
• Two teenagers who were persuaded by terrorists to hack into the Lockheed Martin computer systems
• Two convicts who joined forces to become hackers inside a Texas prison
• A "Robin Hood" hacker who penetrated the computer systems of many prominent companies-andthen told them how he gained access

With riveting "you are there" descriptions of real computer break-ins, indispensable tips on countermeasures security professionals need to implement now, and Mitnick's own acerbic commentary on the crimes he describes, this book is sure to reach a wide audience-and attract the attention of both law enforcement agencies and the media.

The Cuckoo's Egg: Tracking a Spy Through the Maze of Computer Espionage

Clifford Stoll

Amazon Price: $24.25 List Price: $26.95 Usually ships in 24 hours By: Pocket Amazon Marketplace: 74 new & used starting at $0.70

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Business & Culture -> Privacy
Subjects -> Computers & Internet -> Business & Culture -> Security
Subjects -> Computers & Internet -> Databases -> General

Customer Reviews:
Total reviews: 155 Average rating: 4.5 of 5

I love this book. 5 out of 5 stars.
2 of 2 people found this review helpful.

As you can see from the reviews here, many people also love this book.

I love the trip down memory lane that this book provides. Sure is fun to go back to a more innocent time and remember what it was like before the internet became huge. If you remember archie, gopher, kermit, then this is a book for you.

Even if you're too young to remember this time, it would be quite fun to watch WAR GAMES and then read this book. I love the writing style--this is a real page-turner.

Editorial Review:

Cliff Stoll was an astronomer turned systems manager at Lawrence Berkeley Lab when a 75-cent accounting error alerted him to the presence of an unauthorized user on his system. The hacker's code name was "Hunter" -- a mystery invader hiding inside a twisting electronic labyrinth, breaking into U.S. computer systems and stealing sensitive military and security information. Stoll began a one-man hunt of his own, spying on the spy -- and plunged into an incredible international probe that finally gained the attention of top U.S. counterintelligence agents. The Cuckoo's Egg is his wild and suspenseful true story -- a year of deception, broken codes, satellites, missile bases, and the ultimate sting operation -- and how one ingenious American trapped a spy ring paid in cash and cocaine, and reporting to the KGB.

Hacking Exposed 5th Edition (Hacking Exposed: Network Security Secrets & Solutions)

Stuart McClure, Joel Scambray, George Kurtz

Amazon Price: $31.49 List Price: $49.99 Usually ships in 24 hours By: McGraw-Hill Osborne Media Amazon Marketplace: 65 new & used starting at $10.71

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Business & Culture -> Hacking
Subjects -> Computers & Internet -> Business & Culture -> Privacy
Subjects -> Computers & Internet -> Business & Culture -> Security

Customer Reviews:
Total reviews: 88 Average rating: 4.0 of 5

Editorial Review:

“The seminal book on white-hat hacking and countermeasures... Should be required reading for anyone with a server or a network to secure.” --Bill Machrone, PC Magazine

"The definitive compendium of intruder practices and tools." --Steve Steinke, Network Magazine

"For almost any computer book, you can find a clone. But not this one... A one-of-a-kind study of the art of breaking in." --UNIX Review

Here is the latest edition of international best-seller, Hacking Exposed. Using real-world case studies, renowned security experts Stuart McClure, Joel Scambray, and George Kurtz show IT professionals how to protect computers and networks against the most recent security vulnerabilities. You'll find detailed examples of the latest devious break-ins and will learn how to think like a hacker in order to thwart attacks. Coverage includes:

• Code hacking methods and countermeasures
• New exploits for Windows 2003 Server, UNIX/Linux, Cisco, Apache, and Web and wireless applications
• Latest DDoS techniques--zombies, Blaster, MyDoom
• All new class of vulnerabilities--HTTP Response Splitting
• and much more

Secrets and Lies: Digital Security in a Networked World

Bruce Schneier

List Price: $29.99 By: John Wiley & Sons Amazon Marketplace: 78 new & used starting at $1.19

Buy at Amazon.com

Browse similar items by category:
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General AAS
Subjects -> Computers & Internet -> Home Computing -> Internet -> General AAS

Customer Reviews:
Total reviews: 125 Average rating: 4.5 of 5

Great Read 5 out of 5 stars.
0 of 0 people found this review helpful.

If you are going to read only one security title this is the book. Bruce tells it like it is in an easy to read manner. 5 stars!

Editorial Review:

Praise for Sectrets and Lies "This is a business issue, not a technical one, and executives can no longer leave such decisions to techies. That's why Secrets and Lies belongs in every manager's library." Business Week "Clear and passionate, this is the definitive book on Internet security from the leading thinker on the subject." The Industry Standard "Startlingly lively...a jewel box of little surprises you can actually use." Fortune "Secrets is a comprehensive, well-written work on a topic few business leaders can afford to neglect." Business 2.0 "Instead of talking algorithms to geeky programmers, [Schneier] offers a primer in practical computer security aimed at those shopping, communicating or doing business online almost everyone, in other words." The Economist "Schneier peppers the book with lively anecdotes and aphorisms, making it unusually accessible." Los Angeles Times

Counter Hack: A Step-by-Step Guide to Computer Attacks and Effective Defenses (The Radia Perlman Series in Computer Networking and Security)

Edward Skoudis

List Price: $54.99 By: Prentice Hall PTR Amazon Marketplace: 41 new & used starting at $1.80

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Business & Culture -> Hacking
Subjects -> Computers & Internet -> Business & Culture -> Privacy
Subjects -> Computers & Internet -> Business & Culture -> Security

Customer Reviews:
Total reviews: 44 Average rating: 5.0 of 5

Editorial Review:

This informal, step-by-step guide will empower every network and system administrator to defend their network assets, whether or not they have security experience. It covers both Unix and Windows platforms, presenting in-depth descriptions of the inner workings of the most destructive hacker tools, and proven, step-by-step countermeasures. Skoudis begins by presenting the hacker's view of networks and their vulnerabilities, with especially detailed coverage of how hackers view the TCP/IP protocol suite. He introduces all five phases of hacking: reconnaissance (targeting of a network); scanning for network vulnerabilities; gaining access and exploiting the system; maintaining access; and preventing detection. Counter Hack presents in-depth descriptions of the most widespread and dangerous attack scenarios, and the most widely-used hacker tools, including war dialers, port scanners, firewall scanners, sniffers, session hijackers, and more. For all system administrators, network administrators, security specialists, and others directly involved in protecting network and computing infrastructure.

Hacking For Dummies (For Dummies (Computer/Tech))

Kevin Beaver

Amazon Price: $16.49 List Price: $24.99 Usually ships in 24 hours By: For Dummies Amazon Marketplace: 47 new & used starting at $12.07

Buy at Amazon.com

Browse similar items by category:
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General
Subjects -> Business & Investing -> Industries & Professions -> E-commerce -> General AAS
Subjects -> Computers & Internet -> Business & Culture -> Hacking

Customer Reviews:
Total reviews: 15 Average rating: 4.5 of 5

Editorial Review:

Are you worried about external hackers and rogue insiders breaking into your systems? Whether it’s social engineering, network infrastructure attacks, or application hacking, security breaches in your systems can devastate your business or personal life. In order to counter these cyber bad guys, you must become a hacker yourself—an ethical hacker.

Hacking for Dummies shows you just how vulnerable your systems are to attackers. It shows you how to find your weak spots and perform penetration and other security tests. With the information found in this handy, straightforward book, you will be able to develop a plan to keep your information safe and sound. You’ll discover how to:

• Work ethically, respect privacy, and save your system from crashing
• Develop a hacking plan
• Treat social engineers and preserve their honesty
• Counter war dialing and scan infrastructures
• Understand the vulnerabilities of Windows, Linux, and Novell NetWare
• Prevent breaches in messaging systems, web applications, and databases
• Report your results and managing security changes
• Avoid deadly mistakes
• Get management involved with defending your systems

As we enter into the digital era, protecting your systems and your company has never been more important. Don’t let skepticism delay your decisions and put your security at risk. With Hacking For Dummies, you can strengthen your defenses and prevent attacks from every angle!

CEH: Official Certified Ethical Hacker Review Guide: Exam 312-50

Kimberly Graves

Amazon Price: $19.79 List Price: $29.99 Usually ships in 24 hours By: Sybex Amazon Marketplace: 48 new & used starting at $13.34

Buy at Amazon.com

Browse similar items by category:
Subjects -> Computers & Internet -> Business & Culture -> Hacking
Subjects -> Computers & Internet -> Business & Culture -> Security
Subjects -> Computers & Internet -> Certification Central -> Publisher -> Sybex

Customer Reviews:
Total reviews: 15 Average rating: 4.0 of 5

too easy? 3 out of 5 stars.
1 of 2 people found this review helpful.

I'm a freshman in highschool.
I went through the questions at the end of every chapter in borders and i got over 90% of them right.) This book is WAY too easy. It also contained flase information. It said that you cant sniff any packets on a switched LAN and you DEFINITLY CAN. Read Counter-Hack:Reloaded by Ed Skoudis if you dont want to read an understandable book on Ethical Hacking. By the way, the CEH exam is extremely difficult compared to this books test they test you on specific commands that you type in for tools such as Snort. BOTTOM LINE: This is a bad book don't buy it.

Editorial Review:

Prepare for the CEH certification exam with this official review guide and learn how to identify security risks to networks and computers. This easy-to-use guide is organized by exam objectives for quick review so you’ll be able to get the serious preparation you need for the challenging Certified Ethical Hacker certification exam 312-50. As the only review guide officially endorsed by EC-Council, this concise book covers all of the exam objectives and includes a CD with a host of additional study tools.