Release Notes ------------------------------------------------------------------------------- book looks at network security in a new and refreshing way. It guides readers step-by-step through the "stack" -- the seven layers of a network. Each chapter focuses on one layer of the stack along with the attacks, vulnerabilities, and exploits that can be found at that layer. The book even includes a chapter on the mythical eighth layer: The people layer.
This book is designed to offer readers a deeper understanding of many common vulnerabilities and the ways in which attacker's exploit, manipulate, misuse, and abuse protocols and applications. The authors guide the readers through this process by using tools such as Ethereal (sniffer) and Snort (IDS). The sniffer is used to help readers understand how the protocols should work and what the various attacks are doing to break them. IDS is used to demonstrate the format of specific signatures and provide the reader with the skills needed to recognize and detect attacks when they occur.
What makes this book unique is that it presents the material in a layer by layer approach which offers the readers a way to learn about exploits in a manner similar to which they most likely originally learned networking. This methodology makes this book a useful tool to not only security professionals but also for networking professionals, application programmers, and others. All of the primary protocols such as IP, ICMP, TCP are discussed but each from a security perspective. The authors convey the mindset of the attacker by examining how seemingly small flaws are often the catalyst of potential threats. The book considers the general kinds of things that may be monitored that would have alerted users of an attack.
*Remember being a child and wanting to take something apart, like a phone, to see how it worked? This book is for you then as it details how specific hacker tools and techniques accomplish the things they do.
* This book will not only give you knowledge of security tools but will provide you the ability to design more robust security solutions
* Anyone can tell you what a tool does but this book shows you how the tool works Annotation
What makes this book unique is that it presents the material in a layer by layer approach, which offers the readers a way to learn about exploits in a manner similar to how they originally learned networking. This methodology makes the book a useful tool to not only security professionals but also for networking professionals, application programmers, and others. More Reviews and Recommendations Biography
Michael Gregg is the President of Superior Solutions, Inc. and has more than 20 years experience in the IT field. He holds two associate's degrees, a bachelor's degree, and a master's degree and is certified as: CISSP, MCSE, MCT, CTT+, A+, N+, Security+, CNA, CCNA, CIW Security Analyst, CCE, CEH, CHFI, CEI, DCNP, ES Dragon IDS, ES Advanced Dragon IDS, and TICSA.
Table of Contents Ch. 1 Extending OSI to network security 1 Ch. 2 The physical layer 27 Ch. 3 Layer 2 : the data link layer 69 Ch. 4 Layer 3 : the network layer 103 Ch. 5 Layer 4 : the transport layer 151 Ch. 6 Layer 5 : the session layer 205 Ch. 7 Layer 6 : the presentation layer 241 Ch. 8 Layer 7 : the application layer 285 Ch. 9 Layer 8 : the people layer 353 App. A Risk mitigation : securing the stack 401
Product Details
* ISBN: 1597491098 * ISBN-13: 9781597491099 * Format: Paperback, 442pp * Publisher: Syngress Publishing * Pub. Date: December 2006
------------------------------------------------------------------------------- Install Notes ------------------------------------------------------------------------------- Foxit reader
You obtain both http://www.snort.org/Snort and http://www.ethereal.com/download.html for free since they are open source code. |