Buying Options
Network Security Tools
Print $34.95
Add to Cart
Safari Books Online
Add to Cart
What is this?
Print £26.99
Add to Cart
What is this?

Network Security Tools

Writing, Hacking, and Modifying Security Tools

By
Nitesh Dhanjani, Justin Clarke
Publisher:
O'Reilly Media
Released:
April 2005
Pages:
352
Description
This concise, high-end guide shows experienced administrators how to customize and extend popular open source security tools such as Nikto, Ettercap, and Nessus. It also addresses port scanners, packet injectors, network sniffers, and web assessment tools. Network Security Tools is the one resource you want at your side when locking down your network.
Full Description
Table of Contents

  1. Modifying and Hacking Security Tools

    1. Chapter 1 Writing Plug-ins for Nessus

      1. The Nessus Architecture
      2. Installing Nessus
      3. Using Nessus
      4. The NASL Interpreter
      5. Hello World
      6. Datatypes and Variables
      7. Operators
      8. if...else
      9. Loops
      10. Functions
      11. Predefined Global Variables
      12. Important NASL Functions
      13. Nessus Plug-ins

    2. Chapter 2 Developing Dissectors and Plug-ins for the Ettercap Network Sniffer

      1. Installing and Using Ettercap
      2. Writing an Ettercap Dissector
      3. Writing an Ettercap Plug-in

    3. Chapter 3 Extending Hydra and Nmap

      1. Extending Hydra
      2. Adding Service Signatures to Nmap

    4. Chapter 4 Writing Plug-ins for the Nikto Vulnerability Scanner

      1. Installing Nikto
      2. Using Nikto
      3. Nikto Under the Hood
      4. Existing Nikto Plug-ins
      5. Adding Custom Entries to the Plug-in Databases
      6. Using LibWhisker
      7. Writing an NTLM Plug-in for Brute-Force Testing
      8. Writing a Standalone Plug-in to Attack Lotus Domino

    5. Chapter 5 Writing Modules for the Metasploit Framework

      1. Introduction to MSF
      2. Overview of Stack Buffer Overflows
      3. Writing Exploits for MSF
      4. Writing a Module for the MnoGoSearch Overflow
      5. Writing an Operating System Fingerprinting Module for MSF

    6. Chapter 6 Extending Code Analysis to the Webroot

      1. Attacking Web Applications at the Source
      2. Toolkit 101
      3. PMD
      4. Extending PMD

  2. Modifying and Hacking Security Tools

    1. Chapter 7 Fun with Linux Kernel Modules

      1. Hello World
      2. Intercepting System Calls
      3. Hiding Processes
      4. Hiding from netstat

    2. Chapter 8 Developing Web Assessment Tools and Scripts

      1. Web Application Environment
      2. Designing the Scanner
      3. Building the Log Parser
      4. Building the Scanner
      5. Using the Scanner
      6. Complete Source Code

    3. Chapter 9 Automated Exploit Tools

      1. SQL Injection Exploits
      2. The Exploit Scanner
      3. Using the Scanner

    4. Chapter 10 Writing Network Sniffers

      1. Introduction to libpcap
      2. Getting Started with libpcap
      3. libpcap and 802.11 Wireless Networks
      4. libpcap and Perl
      5. libpcap Library Reference

    5. Chapter 11 Writing Packet-Injection Tools

      1. Introduction to libnet
      2. Getting Started with libnet
      3. Advanced libnet Functions
      4. Combining libnet and libpcap
      5. Introducing AirJack

  1. Colophon

View Full Table of Contents
Product Details
Title:
Network Security Tools
By:
Nitesh Dhanjani, Justin Clarke
Publisher:
O'Reilly Media
Formats:
  • Print
  • Safari Books Online
Print Release:
April 2005
Pages:
352
Print ISBN:
978-0-596-00794-2
| ISBN 10:
0-596-00794-9
Customer Reviews
About the Authors

  1. Nitesh Dhanjani

    Nitesh Dhanjani is a well known security researcher, author, and speaker. Dhanjani is currently Senior Manager at a large consulting firm where he advises some of the largest corporations around the world on how to establish enterprise wide information security programs and solutions. Dhanjani is also responsible for evangelizing brand new technology service lines around emerging technologies and trends such as cloud computing and virtualization.

    Prior to his current job, Dhanjani was Senior Director of Application Security and Assessments at a major credit bureau where he spearheaded brand new security efforts into enhancing the enterprise SDLC, created a process for performing source code security reviews & Threat Modeling, and managed the Attack & Penetration team.

    Dhanjani is the author of "Network Security Tools: Writing, Hacking, and Modifying Security Tools" (O'Reilly) and "HackNotes: Linux and Unix Security" (Osborne McGraw-Hill). He is also a contributing author to "Hacking Exposed 4" (Osborne McGraw-Hill) and "HackNotes: Network Security". Dhanjani has been invited to talk at various information security events such as the Black Hat Briefings, RSA, Hack in the Box, Microsoft Blue Hat, and OSCON.

    Dhanjani graduated from Purdue University with both a Bachelors and Masters degree in Computer Science.

    Dhanjani's personal blog is located at dhanjani.com.

    View Nitesh Dhanjani's full profile page.

  2. Justin Clarke

    Justin Clarke is a Director with Gotham Digital Science, based in the United Kingdom. He has many years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.

    Justin is the co-author of Network Security Tools: Writing, Hacking, and Modifying Security Tools, a contributing author to Network Security Assessment: Know Your Network, 2nd Edition, and the lead author of SQL Injection Attacks and Defenses (Syngress) as well as having been invited to speak at a number of conferences on security topics, including Black Hat, EuSecWest, OSCON and RSA.

    Justin is active in developing security tools for penetrating web applications, servers, and wireless networks and as a compulsive tinkerer he can't leave anything alone without at least trying to see how it works.

    View Justin Clarke's full profile page.

Colophon

Our look is the result of reader comments, our own experimentation, and feedback from distribution channels. Distinctive covers complement our distinctive approach to technical topics, breathing personality and life into potentially dry subjects. The figure on the cover of Network Security Tools is a trapeze artist, the most romantic of circus performers. The allure of the trapeze performance, with its breathtaking aerial acrobatics and seemingly effortless flight, belies grave danger: the artist performs without a security net, so the slightest of mistakes can endanger a performer's life. Jamie Peppard was the production editor and proofreader, and Audrey Doyle was the copyeditor for Network Security Tools. Claire Cloutier and Matt Hutchinson provided quality control. Lydia Onofrei provided production assistance. Ellen Troutman Zaig wrote the index.

Emma Colby designed the cover of this book, based on a series design by Edie Freedman. The cover image is a 19th-century engraving from Dover's Old Time Circus Cuts. Karen Montgomery produced the cover layout with Adobe InDesign CS using Adobe's ITC Garamond font.

David Futato designed the interior layout. This book was converted by Keith Fahlgren to FrameMaker 5.5.6 with a format conversion tool created by Erik Ray, Jason McIntosh, Neil Walls, and Mike Sierra that uses Perl and XML technologies. The text font is Linotype Birka; the heading font is Adobe Myriad Condensed; and the code font is LucasFont's TheSans Mono Condensed. The illustrations that appear in the book were produced by Robert Romano, Jessamyn Read, and Lesley Borash using Macromedia FreeHand MX and Adobe Photoshop CS. The tip and warning icons were drawn by Christopher Bing. This colophon was written by Jamie Peppard.

  • Book cover of Network Security Tools
Got a Question?
icons
Favicon Service and support by Satisfaction