 | | |
| Security Warrior | 
| Authors: Cyrus Peikari, Anton Chuvakin
Publisher: O'Reilly Media, Inc.
Category: Book
List Price: $44.95
Buy New: $19.50
You Save: $25.45 (57%)
Buy New/Used from $8.03
Avg. Customer Rating:  (27 reviews)
Sales Rank: 159642
Format: Illustrated
Languages: English (Original Language), French (Unknown), English (Published)
Media: Paperback
Edition: 1st
Number Of Items: 1
Pages: 552
Shipping Weight (lbs): 1.8
Dimensions (in): 9.1 x 7 x 1
ISBN: 0596005458
Dewey Decimal Number: 005.8
EAN: 9780596005450
ASIN: 0596005458
Publication Date: February 1, 2004
Availability: Usually ships in 1-2 business days
|
| Similar Items:
|
| Editorial Reviews:
Product Description
When it comes to network security, many users and administrators are running scared, and justifiably so. The sophistication of attacks against computer systems increases with each new Internet worm. What's the worst an attacker can do to you? You'd better find out, right? That's what "Security Warrior" teaches you. Based on the principle that the only way to defend yourself is to understand your attacker in depth, "Security Warrior" reveals how your systems can be attacked. Covering everything from reverse engineering to SQL attacks, and including topics like social engineering, antiforensics, and common attacks against UNIX and Windows systems, this book teaches you to know your enemy and how to be prepared to do battle. "Security Warrior" places particular emphasis on reverse engineering. RE is a fundamental skill for the administrator, who must be aware of all kinds of malware that can be installed on his machines -- trojaned binaries, "spyware" that looks innocuous but that sends private data back to its creator, and more. This is the only book to discuss reverse engineering for Linux or Windows CE. It's also the only book that shows you how SQL injection works, enabling you to inspect your database and web applications for vulnerability. "Security Warrior" is the most comprehensive and up-to-date book covering the art of computer war: attacks against computer systems and their defenses. It's often scary, and never comforting. If you're on the front lines, defending your site against attackers, you need this book. On your shelf--and in your hands.
|
| Customer Reviews: Read 22 more reviews...
 Security Warrior June 6, 2008
1 out of 1 found this review helpful
This is one of my favorite security books from O'Reilly, primarily for the first four chapters which are dedicated to reverse engineering software. While there are a few texts out there that are dedicated to the subject and go into almost painful detail, this book is great for someone who is new to the skill. The other chapter that I was happy to see was chapter twenty-two which covers forensics and anti-forensics. While the coverage on anti-forensics was a bit light, it was great to actually see it included. I would be very interested to see (perhaps write?) a full book on this from O'Reilly sometime in the future, particularly given some of the attack methods on full disk encryption coming out of Princeton as of late.
Overall, a great tome on security with a good body of solid and applicable information. I'm hoping to see an updated edition.
 Technical accuracy escapes them. July 27, 2007
4 out of 5 found this review helpful
This book contains some okay level of steering, but that's about it. The technical accuracy I see exhibited here can only be rivaled by your grandma explaining Windows system internals. It doesn't end at just the author's confusion of C and C++ (classic "strcpy() and other C++ functions" babble); the very explanation of why a program crashes, or how an attack works, or how variables and buffers get created is flat wrong.
I had to stop reading this in the buffer overflow chapter. Highlights include the flawed interpretation of the error message from when bigmac() returned (it returned to non-mapped memory, the book says it read past the end of a string); the horrible explanation of how buffers work (buffers are not simple variables, and variables do not allocate multiple chunks of memory for themselves as explained); and the incorrect description of the return-to-text attack (returned to existing code, but the book says it's run code you injected onto the stack). After reading a stream of these such inaccuracies, I stopped looking for something that actually came out right.
The buffer overflow chapter can easily be replaced with Hacking: The Art of Exploitation. Read that instead. It's also got better networking and WEP attack explanations.
 Essential read for any web-based application developer March 31, 2006
1 out of 4 found this review helpful
This book is outstanding and an essential read for anyone doing web-based application development.
It is very eye-opening to the current state of web security.
Good Overall Coverage and Plenty Technical Details June 7, 2005
1 out of 18 found this review helpful
Security Warrior has good overall coverage and plenty technical details for people like me who are interested in the technical details.
 Weak Information April 6, 2005
8 out of 36 found this review helpful
This book should be titled "General Security Buzzwords 101 For The High Level User." The information in it just misses the information that one would be looking for in a technical environment.
|
|
|
Powered by: Dknc, inc. and Amazon.com | | 
For your safety and security, orders are processed through amazon.com
|
|
|
|
