Table of Contents for
Gray Hat Hacking The Ethical Hacker’s Handbook

Version ebook / Retour

Cover image for bash Cookbook, 2nd Edition Gray Hat Hacking The Ethical Hacker’s Handbook by Jonathan Ness Published by McGraw-Hill, 2011
  1. Cover Page
  2. Gray Hat Hacking the Ethical Hacker’s Handbook
  3. Gray Hat Hacking the Ethical Hacker’s Handbook
  4. Copyright Page
  5. Gray Hat Hacking the Ethical Hacker’s Handbook
  6. Gray Hat Hacking the Ethical Hacker’s Handbook
  7. Gray Hat Hacking the Ethical Hacker’s Handbook
  8. Gray Hat Hacking the Ethical Hacker’s Handbook
  9. Contents
  10. Preface
  11. Acknowledgments
  12. Introduction
  13. Part I Introduction to Ethical Disclosure
  14. Chapter 1 Ethics of Ethical Hacking
  15. Chapter 2 Ethical Hacking and the Legal System
  16. Chapter 3 Proper and Ethical Disclosure
  17. Part II Penetration Testing and Tools
  18. Chapter 4 Social Engineering Attacks
  19. Chapter 5 Physical Penetration Attacks
  20. Chapter 6 Insider Attacks
  21. Chapter 7 Using the BackTrack Linux Distribution
  22. Chapter 8 Using Metasploit
  23. Chapter 9 Managing a Penetration Test
  24. Part III Exploiting
  25. Chapter 10 Programming Survival Skills
  26. Chapter 11 Basic Linux Exploits
  27. Chapter 12 Advanced Linux Exploits
  28. Chapter 13 Shellcode Strategies
  29. Chapter 14 Writing Linux Shellcode
  30. Chapter 15 Windows Exploits
  31. Chapter 16 Understanding and Detecting Content-Type Attacks
  32. Chapter 17 Web Application Security Vulnerabilities
  33. Chapter 18 VoIP Attacks
  34. Chapter 19 SCADA Attacks
  35. Part IV Vulnerability Analysis
  36. Chapter 20 Passive Analysis
  37. Chapter 21 Advanced Static Analysis with IDA Pro
  38. Chapter 22 Advanced Reverse Engineering
  39. Chapter 23 Client-Side Browser Exploits
  40. Chapter 24 Exploiting the Windows Access Control Model
  41. Chapter 25 Intelligent Fuzzing with Sulley
  42. Chapter 26 From Vulnerability to Exploit
  43. Chapter 27 Closing the Holes: Mitigation
  44. Part V Malware Analysis
  45. Chapter 28 Collecting Malware and Initial Analysis
  46. Chapter 29 Hacking Malware
  47. Index

ABOUT THE AUTHORS

Allen Harper, CISSP, PCI QSA, is the president and owner of N2NetSecurity, Inc. in North Carolina. He retired from the Marine Corps after 20 years and a tour in Iraq. Additionally, he has served as a security analyst for the U.S. Department of the Treasury, Internal Revenue Service, and Computer Security Incident Response Center (IRS CSIRC). He regularly speaks and teaches at conferences such as Black Hat and Techno.

Shon Harris, CISSP, is the president of Logical Security, an author, educator, and security consultant. She is a former engineer of the U.S. Air Force Information Warfare unit and has published several books and articles on different disciplines within information security. Shon was also recognized as one of the top 25 women in information security by Information Security Magazine.

Jonathan Ness, CHFI, is a lead software security engineer in Microsoft’s Security Response Center (MSRC). He and his coworkers ensure that Microsoft’s security updates comprehensively address reported vulnerabilities. He also leads the technical response of Microsoft’s incident response process that is engaged to address publicly disclosed vulnerabilities and exploits targeting Microsoft software. He serves one weekend each month as a security engineer in a reserve military unit.

Chris Eagle is a senior lecturer in the Computer Science Department at the Naval Postgraduate School (NPS) in Monterey, California. A computer engineer/scientist for 25 years, his research interests include computer network attack and defense, computer forensics, and reverse/anti-reverse engineering. He can often be found teaching at Black Hat or spending late nights working on capture the flag at Defcon.

Gideon Lenkey, CISSP, is the president and co-founder of Ra Security Systems, Inc., a New Jersey–based managed services company, where he specializes in testing the information security posture of enterprise IT infrastructures. He has provided advanced training to the FBI and served as the president of the FBI’s InfraGard program in New Jersey. He has been recognized on multiple occasions by FBI director Robert Muller for his contributions and is frequently consulted by both foreign and domestic government agencies. Gideon is a regular contributor to the Internet Evolution website and a participant in the EastWest Institute’s Cybersecurity initiative.

Terron Williams, NSA IAM-IEM, CEH, CSSLP, works for Elster Electricity as a Senior Test Engineer, with a primary focus on smart grid security. He formerly worked at Nortel as a Security Test Engineer and VoIP System Integration Engineer. Terron has served on the editorial board for Hakin9 IT Security Magazine and has authored articles for it. His interests are in VoIP, exploit research, SCADA security, and emerging smart grid technologies.

Disclaimer: The views expressed in this book are those of the authors and not of the U.S. government or the Microsoft Corporation.