| Description |
1 online resource (xxiv, 512 pages) : illustrations |
|
text file |
| Note |
Includes index. |
| Contents |
Hacking today -- Defining the hacker -- Penetration for hire -- Where the exposures lie -- Internet penetration -- Dial-in penetration -- Internal penetration testing -- Social engineering -- UNIX methods -- The tool kit -- Automated vulnerability scanners -- Discovery tools -- Port scanners -- Sniffers -- Password crackers -- Windows NT tools -- Web-testing tools -- Remote control -- Intrusion detection systems -- Firewalls -- Denial-of-service attacks -- Wrapping it up -- Future trends -- Appendix A. CD-ROM contents -- Appendix B. The twenty most critical Internet security vulnerabilities--the experts' consensus. |
| Summary |
"This book covers not just the glamorous aspects such as the intrusion act itself, but all of the pitfalls, contracts, clauses, and other gotchas that can occur. The authors have taken their years of trial and error, as well as experience, and documented a previously unknown black art." --From the Foreword by Simple Nomad, Senior Security Analyst, BindView RAZOR Team Penetration testing--in which professional, "white hat" hackers attempt to break through an organization's security defenses--has become a key defense weapon in today's information systems security arsenal. Through penetration testing, I.T. and security professionals can take action to prevent true "black hat" hackers from compromising systems and exploiting proprietary information. Hack I.T. introduces penetration testing and its vital role in an overall network security plan. You will learn about the roles and responsibilities of a penetration testing professional, the motivation and strategies of the underground hacking community, and potential system vulnerabilities, along with corresponding avenues of attack. Most importantly, the book provides a framework for performing penetration testing and offers step-by-step descriptions of each stage in the process. The latest information on the necessary hardware for performing penetration testing, as well as an extensive reference on the available security tools, is included. Comprehensive in scope Hack I.T. provides in one convenient resource the background, strategies, techniques, and tools you need to test and protect your system--before the real hackers attack. Specific topics covered in this book include: Hacking myths Potential drawbacks of penetration testing Announced versus unannounced testing Application-level holes and defenses Penetration through the Internet, including zone transfer, sniffing, and port scanning War dialing Enumerating NT systems to expose security holes Social engineering methods Unix-specific vulnerabilities, such as RPC and buffer overflow attacks The Windows NT Resource kit Port scanners and discovery tools Sniffers and password crackers Web testing tools Remote control tools Firewalls and intrusion detection systems Numerous DoS attacks and tools 0201719568B01042002. |
| Language |
English. |
| Subject |
Computer security.
|
|
Computers -- Access control -- Testing.
|
|
Sécurité informatique. |
|
Computer security |
|
Computers -- Access control -- Testing |
|
Engineering & Applied Sciences. |
|
Computer Science. |
| Added Author |
Laliberte, Scott.
|
|
Gupta, Ajay.
|
| Other Form: |
Print version: Klevinsky, T.J. Hack I.T. Boston : Addison-Wesley, ©2002 0201719568 (DLC) 2001056058 (OCoLC)48449561 |
| ISBN |
0201719568 (paperback) |
|
9780201719567 (paperback) |
| Standard No. |
9780201719567 |
|
0201719568 |
|
More Resources