Network Security Tools

Couverture
"O'Reilly Media, Inc.", 2005 - 324 pages

If you're an advanced security professional, then you know that the battle to protect online privacy continues to rage on. Security chat rooms, especially, are resounding with calls for vendors to take more responsibility to release products that are more secure. In fact, with all the information and code that is passed on a daily basis, it's a fight that may never end. Fortunately, there are a number of open source security tools that give you a leg up in the battle.Often a security tool does exactly what you want, right out of the box. More frequently, you need to customize the tool to fit the needs of your network structure. Network Security Tools shows experienced administrators how to modify, customize, and extend popular open source security tools such as Nikto, Ettercap, and Nessus.This concise, high-end guide discusses the common customizations and extensions for these tools, then shows you how to write even more specialized attack and penetration reviews that are suited to your unique network environment. It also explains how tools like port scanners, packet injectors, network sniffers, and web assessment tools function.Some of the topics covered include:

  • Writing your own network sniffers and packet injection tools
  • Writing plugins for Nessus, Ettercap, and Nikto
  • Developing exploits for Metasploit
  • Code analysis for web applications
  • Writing kernel modules for security applications, and understanding rootkits
While many books on security are either tediously academic or overly sensational, Network Security Tools takes an even-handed and accessible approach that will let you quickly review the problem and implement new, practical solutions--without reinventing the wheel. In an age when security is critical, Network Security Tools is the resource you want at your side when locking down your network.
 

Pages sélectionnées

Table des matières

I
ix
II
1
III
3
IV
42
V
56
VI
75
VIII
92
IX
121
X
157
XI
159
XII
178
XIII
214
XIV
244
XV
282
Droits d'auteur

Autres éditions - Tout afficher

Network Security Tools: Writing, Hacking, and Modifying Security Tools
Nitesh Dhanjani,Justin Clarke
Aperçu limité - 2005
Network Security Tools: Writing, Hacking, and Modifying Security Tools
Nitesh Dhanjani,Justin Clarke
Aperçu limité - 2005

Expressions et termes fréquents

application Arpsniff array ASTMethodDeclaration authentication buffer called chapter char contains database error message database server datatype default detect device dissector errbuf Ethernet Ettercap example exit exploit filter fprintf stderr function returns handle header Hydra input file install interface invoked IP address IPv4 kernel libpcap link type Linux LOGIN loop match method module NASL Nessus Nikto Nmap node notroot NTLM NULL number of columns options output packet capture parameter parse password payload pcap pcap_t perform Perl plug-in port protocol Prototype regular expression response routine scan scanner script shellcode socket source code specified SQL injection sqlColumnVuln sqlVuln stack static stderr struct subroutine symptom code sys_call_table Table test request test string u_char u_int8_t Unix user-controllable input username VARCHAR variable void vulnerabilities web application web server wireless

Fréquemment cités

Page 316 - ... attack and penetration reviews for many significant companies in the IT arena. He also developed proprietary network scanning tools for use within Ernst & Young LLP's eSecurity Solutions department.
Cité dans 4 livres de 2003 à 2005

À propos de l'auteur (2005)

Nitesh Dhanjani is a well known security researcher, author, and speaker. Dhanjani is currently Senior Manager at a large consulting firm where he advises some of the largest corporations around the world on how to establish enterprise wide information security programs and solutions. Dhanjani is also responsible for evangelizing brand new technology service lines around emerging technologies and trends such as cloud computing and virtualization. Prior to his current job, Dhanjani was Senior Director of Application Security and Assessments at a major credit bureau where he spearheaded brand new security efforts into enhancing the enterprise SDLC, created a process for performing source code security reviews & Threat Modeling, and managed the Attack & Penetration team. Dhanjani is the author of "Network Security Tools: Writing, Hacking, and Modifying Security Tools" (O'Reilly) and "HackNotes: Linux and Unix Security" (Osborne McGraw-Hill). He is also a contributing author to "Hacking Exposed 4" (Osborne McGraw-Hill) and "HackNotes: Network Security". Dhanjani has been invited to talk at various information security events such as the Black Hat Briefings, RSA, Hack in the Box, Microsoft Blue Hat, and OSCON. Dhanjani graduated from Purdue University with both a Bachelors and Masters degree in Computer Science. Dhanjani's personal blog is located at dhanjani.com. Justin Clarke is a Director with Gotham Digital Science, based in the United Kingdom. He has many years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand. Justin is the co-author of Network Security Tools: Writing, Hacking, and Modifying Security Tools, a contributing author to Network Security Assessment: Know Your Network, 2nd Edition, and the lead author of SQL Injection Attacks and Defenses (Syngress) as well as having been invited to speak at a number of conferences on security topics, including Black Hat, EuSecWest, OSCON and RSA. Justin is active in developing security tools for penetrating web applications, servers, and wireless networks and as a compulsive tinkerer he can't leave anything alone without at least trying to see how it works.

Informations bibliographiques

TitreNetwork Security Tools
O'Reilly Software Series
AuteursNitesh Dhanjani, Justin Clarke
Éditionillustrée
Éditeur"O'Reilly Media, Inc.", 2005
ISBN0596007949, 9780596007942
Longueur324 pages
  
Exporter la citationBiBTeX EndNote RefMan