Buying Options
Security Power Tools
Print $59.99
Add to Cart
Print+Ebook $65.99
Add to Cart
Ebook $47.99
(Mobi, PDF, ePub)
Add to Cart
Safari Books Online
Add to Cart
What is this?
Print £45.99
Add to Cart
What is this?

Security Power Tools

By
Bryan Burns, Dave Killion, Nicolas Beauchesne, Eric Moret, et al.
Publisher:
O'Reilly Media
Released:
August 2007
Pages:
864
Description
What if you could sit down with some of the most talented security engineers in the world and ask any network security question you wanted? Security Power Tools lets you do exactly that! Members of Juniper Networks' Security Engineering team and a few guest experts reveal how to use, tweak, and push the most popular network security applications, utilities, and tools available using Windows, Linux, Mac OS X, and Unix platforms.
Full Description
Table of Contents

  1. Legal and Ethics

    1. Chapter 1 Legal and Ethics Issues

      1. Core Issues
      2. Computer Trespass Laws: No "Hacking" Allowed
      3. Reverse Engineering
      4. Vulnerability Reporting
      5. What to Do from Now On

  2. Reconnaissance

    1. Chapter 2 Network Scanning

      1. How Scanners Work
      2. Superuser Privileges
      3. Three Network Scanners to Consider
      4. Host Discovery
      5. Port Scanning
      6. Specifying Custom Ports
      7. Specifying Targets to Scan
      8. Different Scan Types
      9. Tuning the Scan Speed
      10. Application Fingerprinting
      11. Operating System Detection
      12. Saving Nmap Output
      13. Resuming Nmap Scans
      14. Avoiding Detection
      15. Conclusion

    2. Chapter 3 Vulnerability Scanning

      1. Nessus
      2. Nikto
      3. WebInspect

    3. Chapter 4 LAN Reconnaissance

      1. Mapping the LAN
      2. Using ettercap and arpspoof on a Switched Network
      3. Dealing with Static ARP Tables
      4. Getting Information from the LAN
      5. Manipulating Packet Data

    4. Chapter 5 Wireless Reconnaissance

      1. Get the Right Wardriving Gear
      2. 802.11 Network Basics
      3. 802.11 Frames
      4. How Wireless Discovery Tools Work
      5. Netstumbler
      6. Kismet at a Glance
      7. Using Kismet
      8. Sorting the Kismet Network List
      9. Using Network Groups with Kismet
      10. Using Kismet to Find Networks by Probe Requests
      11. Kismet GPS Support Using gpsd
      12. Looking Closer at Traffic with Kismet
      13. Capturing Packets and Decrypting Traffic with Kismet
      14. Wireshark at a Glance
      15. Using Wireshark
      16. AirDefense Mobile I was a founding employee of AirDefense, Inc. I wrote a considerable portion of AirDefense Mobile's core engine, and while I no longer work for AirDefense, Inc., I remain a shareholder.
      17. AirMagnet Analyzers
      18. Other Wardriving Tools

    5. Chapter 6 Custom Packet Generation

      1. Why Create Custom Packets?
      2. Scapy
      3. Packet-Crafting Examples with Scapy
      4. Packet Mangling with Netfilter
      5. References

  3. Legal and Ethics

    1. Chapter 7 Metasploit

      1. Metasploit Interfaces
      2. Updating Metasploit
      3. Choosing an Exploit
      4. Choosing a Payload
      5. Setting Options
      6. Running an Exploit
      7. Managing Sessions and Jobs
      8. The Meterpreter
      9. Security Device Evasion
      10. Sample Evasion Output
      11. Evasion Using NOPs and Encoders
      12. In Conclusion

    2. Chapter 8 Wireless Penetration

      1. WEP and WPA Encryption
      2. Aircrack
      3. Installing Aircrack-ng
      4. Running Aircrack-ng
      5. Airpwn
      6. Basic Airpwn Usage
      7. Airpwn Configuration Files
      8. Using Airpwn on WEP-Encrypted Networks
      9. Scripting with Airpwn
      10. Karma
      11. Conclusion

    3. Chapter 9 Exploitation Framework Applications

      1. Task Overview
      2. Core Impact Overview
      3. Network Reconnaissance with Core Impact
      4. Core Impact Exploit Search Engine
      5. Running an Exploit
      6. Running Macros
      7. Bouncing Off an Installed Agent
      8. Enabling an Agent to Survive a Reboot
      9. Mass Scale Exploitation
      10. Writing Modules for Core Impact
      11. The Canvas Exploit Framework
      12. Porting Exploits Within Canvas
      13. Using Canvas from the Command Line
      14. Digging Deeper with Canvas
      15. Advanced Exploitation with MOSDEF
      16. Writing Exploits for Canvas
      17. Exploiting Alternative Tools

    4. Chapter 10 Custom Exploitation

      1. Understanding Vulnerabilities
      2. Analyzing Shellcode
      3. Testing Shellcode
      4. Creating Shellcode
      5. Disguising Shellcode
      6. Execution Flow Hijacking
      7. References

  4. Control

    1. Chapter 11 Backdoors

      1. Choosing a Backdoor
      2. VNC
      3. Creating and Packaging a VNC Backdoor
      4. Connecting to and Removing the VNC Backdoor
      5. Back Orifice 2000
      6. Configuring a BO2k Server
      7. Configuring a BO2k Client
      8. Adding New Servers to the BO2k Workspace
      9. Using the BO2k Backdoor
      10. BO2k Powertools
      11. Encryption for BO2k Communications
      12. Concealing the BO2k Protocol
      13. Removing BO2k
      14. A Few Unix Backdoors

    2. Chapter 12 Rootkits

      1. Windows Rootkit: Hacker Defender
      2. Linux Rootkit: Adore-ng
      3. Detecting Rootkits Techniques
      4. Windows Rootkit Detectors
      5. Linux Rootkit Detectors
      6. Cleaning an Infected System
      7. The Future of Rootkits

  5. Defense

    1. Chapter 13 Proactive Defense: Firewalls

      1. Firewall Basics
      2. Network Address Translation
      3. Securing BSD Systems with ipfw/natd
      4. Securing GNU/Linux Systems with netfilter/iptables
      5. Securing Windows Systems with Windows Firewall/Internet Connection Sharing
      6. Verifying Your Coverage

    2. Chapter 14 Host Hardening

      1. Controlling Services
      2. Turning Off What You Do Not Need
      3. Limiting Access
      4. Limiting Damage
      5. Bastille Linux
      6. SELinux
      7. Password Cracking
      8. Chrooting
      9. Sandboxing with OS Virtualization

    3. Chapter 15 Securing Communications

      1. The SSH-2 Protocol
      2. SSH Configuration
      3. SSH Authentication
      4. SSH Shortcomings
      5. SSH Troubleshooting
      6. Remote File Access with SSH
      7. SSH Advanced Use
      8. Using SSH Under Windows
      9. File and Email Signing and Encryption
      10. GPG
      11. Create Your GPG Keys
      12. Encryption and Signature with GPG
      13. PGP Versus GPG Compatibility
      14. Encryption and Signature with S/MIME
      15. Stunnel
      16. Disk Encryption
      17. Windows Filesystem Encryption with PGP Disk
      18. Linux Filesystem Encryption with LUKS
      19. Conclusion

    4. Chapter 16 Email Security and Anti-Spam

      1. Norton Antivirus
      2. The ClamAV Project
      3. ClamWin
      4. Freshclam
      5. Clamscan
      6. clamd and clamdscan
      7. ClamAV Virus Signatures
      8. Procmail
      9. Basic Procmail Rules
      10. Advanced Procmail Rules
      11. ClamAV with Procmail
      12. Unsolicited Email
      13. Spam Filtering with Bayesian Filters
      14. SpamAssassin
      15. SpamAssassin Rules
      16. Plug-ins for SpamAssassin
      17. SpamAssassin with Procmail
      18. Anti-Phishing Tools
      19. Conclusion

    5. Chapter 17 Device Security Testing

      1. Replay Traffic with Tcpreplay
      2. Traffic IQ Pro
      3. ISIC Suite
      4. Protos

  6. Monitoring

    1. Chapter 18 Network Capture

      1. tcpdump
      2. Ethereal/Wireshark
      3. pcap Utilities: tcpflow and Netdude
      4. Python/Scapy Script Fixes Checksums
      5. Conclusion

    2. Chapter 19 Network Monitoring

      1. Snort
      2. Implementing Snort
      3. Honeypot Monitoring
      4. Gluing the Stuff Together

    3. Chapter 20 Host Monitoring

      1. Using File Integrity Checkers
      2. File Integrity Hashing
      3. The Do-It-Yourself Way with rpmverify
      4. Comparing File Integrity Checkers
      5. Prepping the Environment for Samhain and Tripwire
      6. Database Initialization with Samhain and Tripwire
      7. Securing the Baseline Storage with Samhain and Tripwire
      8. Running Filesystem Checks with Samhain and Tripwire
      9. Managing File Changes and Updating Storage Database with Samhain and Tripwire
      10. Recognizing Malicious Activity with Samhain and Tripwire
      11. Log Monitoring with Logwatch
      12. Improving Logwatch's Filters
      13. Host Monitoring in Large Environments with Prelude-IDS
      14. Conclusion

  7. Discovery

    1. Chapter 21 Forensics

      1. Netstat
      2. The Forensic ToolKit
      3. Sysinternals

    2. Chapter 22 Application Fuzzing

      1. Which Fuzzer to Use
      2. Different Types of Fuzzers for Different Tasks
      3. Writing a Fuzzer with Spike
      4. The Spike API
      5. File-Fuzzing Apps
      6. Fuzzing Web Applications
      7. Configuring WebProxy
      8. Automatic Fuzzing with WebInspect
      9. Next-Generation Fuzzing
      10. Fuzzing or Not Fuzzing

    3. Chapter 23 Binary Reverse Engineering

      1. Interactive Disassembler
      2. Sysinternals
      3. OllyDbg
      4. Other Tools

  1. Colophon

View Full Table of Contents
Product Details
Title:
Security Power Tools
By:
Bryan Burns, Dave Killion, Nicolas Beauchesne, Eric Moret, Julien Sobrier, Michael Lynn, Eric Markham, Chris Iezzoni, Philippe Biondi, Jennifer Stisa Granick, Steve Manzuik, Paul Guersch
Publisher:
O'Reilly Media
Formats:
  • Print
  • Ebook
  • Safari Books Online
Print Release:
August 2007
Ebook Release:
December 2008
Pages:
864
Print ISBN:
978-0-596-00963-2
| ISBN 10:
0-596-00963-1
Ebook ISBN:
978-0-596-15863-7
| ISBN 10:
0-596-15863-7
Customer Reviews
About the Authors

  1. Bryan Burns

    Bryan Burns is the technical editor and general project leader of this book. He is the Chief Security Architect for Juniper Networks with more than a decade of experience in the security networking field and with numerous posts at leading network security companies. All other contributors are security engineers and researchers working at Juniper Networks in various posts both in the security network lab and in the field.

    View Bryan Burns's full profile page.

  2. Jennifer Stisa Granick

    Jennifer Stisa Granick is the Civil Liberties Director at the Electronic Frontier Foundation. Before EFF, Granick was a Lecturer in Law and Executive Director of the Center for Internet and Society at Stanford Law School where she taught Cyberlaw and Computer Crime Law. She practices in the full spectrum of Internet law issues including computer crime and security, national security, constitutional rights, and electronic surveillance, areas in which her expertise is recognized nationally.

    Before teaching at Stanford, Jennifer spent almost a decade practicing criminal defense law in California. She was selected by Information Security magazine in 2003 as one of 20 "Women of Vision" in the computer security field. She earned her law degree from University of California, Hastings College of the Law and her undergraduate degree from the New College of the University of South Florida.

    View Jennifer Stisa Granick's full profile page.

  3. Steve Manzuik

    Steve Manzuik has more than 13 thirteen years of experience in the information technology and security industry. Steve founded and was the technical lead for Entrench Technologies. Prior to Entrench, Mr. Manzuik was a manager in Ernst & Young's Security & Technology Solutions practice. Steve co-authored Hack Proofing Your Network, Second Edition (Syngress, 1928994709).

    View Steve Manzuik's full profile page.

  4. Paul Guersch

    Paul Guersch is a security technical writer and one of the developmental editors of Security Power Tools (O'Reilly). He has been with Juniper Networks for a year and a half.

    View Paul Guersch's full profile page.

  5. Dave Killion

    Dave Killion (NSCA, NSCP) is a senior security research engineer with Juniper Networks, Inc. Formerly with the U.S. Army's Information Operations Task Force as an Information Warfare Specialist, he currently researches, develops, and releases signatures for the NetScreen Deep Inspection and Intrusion Detection and Prevention platforms. Dave has also presented at several security conventions including DefCon and ToorCon, with a proof-of-concept network monitoring evasion device in affiliation with several local security interest groups that he helped form. Dave lives south of Silicon Valley with his wife Dawn and two children, Rebecca and Justin.

    View Dave Killion's full profile page.

  6. Nicolas Beauchesne

    Nicolas Beauchesne is a network security engineer specializing in network penetration. He has worked with Juniper Networks for the past two years.

    View Nicolas Beauchesne's full profile page.

  7. Eric Moret

    Eric Moret is originally from France and lives with his wife and two children in the San Francisco Bay Area. He obtained his Masters degree in Computer Sciences in 1997. He currently works at Juniper Networks where he manages a team dedicated to testing and releasing network protocol decoders for security appliance products. In addition to writing he enjoys traveling the world, photography and, depending on the season, snow boarding the Sierra Nevada or scuba diving Mexican caves.

    View Eric Moret's full profile page.

  8. Julien Sobrier

    Julien Sobrier is a network security engineer at Zscaler. He works on the web security in the cloud. He was previously working for Juniper Networks. His experience was on the Intrusion Detection and Preventions systems. He is also the creator of http://safe.mn/, a URL shortener focused on security.

    View Julien Sobrier's full profile page.

  9. Michael Lynn

    Michael Lynn is a network security engineer at Juniper Networks. He has worked there for the past two years.

    View Michael Lynn's full profile page.

  10. Eric Markham

    Eric Markham is a security engineer. He has been with Juniper Networks for the past five years.

    View Eric Markham's full profile page.

  11. Chris Iezzoni

    Chris Iezzoni has been a security researcher and signature developer with Juniper's security team for several years.

    View Chris Iezzoni's full profile page.

  12. Philippe Biondi

    Philippe Biondi is a research engineer at EADS Innovation Works. He works in the IT security lab, and is the creator of many programs like Scapy or ShellForge.

    View Philippe Biondi's full profile page.

    13. View All Authors

Colophon

The image on the cover of Security Power Tools is a rotary hammer. This tool, also known as a hammer drill, is used for drilling into stone or concrete. It employs a rotating hammering motion that allows it to dig holes into the stone quickly with minimal effort. It can also work at low speeds for chiseling work and for restrained, more precise cutting. The cover image is a photograph taken by Frank Deras. The cover font is Adobe ITC Garamond. The text font is Linotype Birka; the heading font is Adobe Helvetica Neue Condensed; and the code font is LucasFont's TheSans Mono Condensed.

  • Book cover of Security Power Tools
Got a Question?
icons
Favicon Service and support by Satisfaction