Hacking Exposed

The bonus companion web site contains custom scanning scripts and links to security tools.
Foreword by industry expert Marcus Ranum, CEO of Network Flight Recorder (NFR)

Learn to :

• Find, exploit, and apply countermeasures for security holes in Unix, Linux, Windows NT/95/98, and Novell networks
• Repair email and Web security holes (CGI, Perl, ASP, browsers, and hostile mobile code)
• Understand how back channels and port redirection are used to circumvent firewalls
• Locate and scan for vulnerable systems using Whois, Domain Name System queries, Ping Sweeps, Port Scans, and OS detection
• Enumerate users, groups, shares, file systems, and services with no authentication.
• Crack accounts and passwords, escalate privilege, and exploit trusts
• Find and eliminate back doors, Trojan horses, viruses, and buffer overflows
• Implement auditing and intrusion detection solutions
• Recognize vulnerabilities from dialup modems, modem pools, and RAS servers.

Table of contents

• Introduction
• Section I: Finding the Juicy Targets. Footprinting. Scanning. Enumerating
• Section II: System Hacking. NT. Novell. Unix. AS/400. Windows 95/98
• Section III: Network Hacking. Devices. Firewalls. RAS. Denial of Service and Hijacking
• Section IV: Application Hacking. Mail Servers. Databases. Web Servers. Backdoors
• Section V: Telecom Hacking. Dialup Modems. PBX. Voice Mail
• Section VI: Extranet Hacking. ISP and Partnership Security. E-Commerce Security. VPN Security.
• Appendices: A: Ports Listing. B: Links and Resources. C: Tools. D: Bibliography.