Hack Attacks Revealed: A Complete Reference for UNIX, Windows,...

Features

• Cover Type: Paperback with 960 pages
• Published by: Wiley
• Edition: 2nd Edition August 21, 2002
• Written in: English
• ISBN 10 Number: 0471232823
• ISBN 13 Number: 978-0471232827
• Book Dimensions: 9.4 x 7.7 x 2 inches
• Weighs: 3.6 pounds

Product Review
“…well worth the read…” (Slashdot, 6 March 2003)

Book Description
The much-anticipated second edition of the bestselling book that details network security through the hacker's eye
Since the first edition of Hack Attacks Revealed was published, many new attacks have been made on all operating systems, including UNIX, Windows XP, Mac OS, and Linux, and on firewalls, proxies, and gateways. Security expert John Chirillo is ready to tackle these attacks with you again. He has packed the Second Edition of his all-in-one reference with forty percent new material.
In this fascinating new edition, you'll discover:
* The hacker's perspective on security holes in UNIX, Linux, and Windows networks
* Over 170 new vulnerabilities and exploits
* Advanced discovery techniques
* A crash course in C for compiling hacker tools and vulnerability scanners
* The top seventy-five hack attacks for UNIX and Windows
* Malicious code coverage of Myparty, Goner, Sircam, BadTrans, Nimda, Code Red I/II, and many more
* TigerSuite Professional 3.5 (full suite single license)

Reader Reviews
This book has done nothing to dispell my theory that the information content of a book is often inversely proportional to the number of pages in the book. I'm 200 pages into it and that's as far as I'm going to get. I expected some basic filler/theory in the first few pages, but plowed on in the hopes that the author understood the theory he was presenting and would use it later to explain security exploits. However, I lost all confidence in the book when I reached page 167, where the author demonstrates that he doesn't understand ping and/or DNS. I don't bring this up to nitpick. I bring it up because I think that anybody with pretensions to being a security expert had better know the basics of how the Internet works. How is anybody to make sense of, say, DNS spoofing, without knowing how DNS works? In case it's not obvious, the author confuses and muddles together the actions of resolving a DNS domain name to an IP address, and then using that IP address to send an ICMP echo request to the destination. This may seem like a minor thing, but its not just a typo (he makes the same mistake in three different places on page 167), and security is a confusing enough business without muddled descriptions like these. On a more minor note, I do not see the point in filling page after page with pretty pictures of the GUIs that hackers use at their end. The publishers probably know better than I do what sells today, but I don't understand why they and/or the authors apparently feel that the thicker a book is, the better. Comment | | (Report this)