NMON Network Monitoring: Books: Silence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks

NMON Network Monitoring

Search

Advanced Search

View Cart Checkout

Location: Home » Books » Silence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks

July 20, 2008

Bestsellers

•	The Last Lecture
•	How to Use the Amazon Kindle for Email & Over 100 Pages of Other Cool Tips (The Complete User's Guide to the Amazing Amazon Kindle - Final days at "BETA" price)
•	The Digital Photography Book
•	Last Lecture, The
•	Presentation Zen: Simple Ideas on Presentation Design and Delivery (Voices That Matter)
•	The Digital Photography Book, Volume 2
•	Mac OS X Leopard: The Missing Manual
•	Canon EOS 40D Guide to Digital Photography
•	The Photoshop Elements 6 Book for Digital Photographers (Voices That Matter)
•	The Adobe Photoshop CS3 Book for Digital Photographers (Voices That Matter)

Browse

•	Books
•	Computers
•	Electronics

New Releases

•	Cocoa(R) Programming for Mac(R) OS X (3rd Edition)
•	The Official Filthy Rich Handbook
•	500 Handmade Books: Inspiring Interpretations of a Timeless Form (500 Series)
•	SCJP Sun Certified Programmer for Java 6 Exam 310-065
•	Effective Java (2nd Edition) (The Java Series)
•	The Best of 2600: A Hacker Odyssey
•	ProBlogger: Secrets for Blogging Your Way to a Six-Figure Income
•	Disrupting Class: How Disruptive Innovation Will Change the Way the World Learns
•	Civilization Revolution Official Strategy Guide (Official Strategy Guides)
•	iPhone: The Missing Manual

Silence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks
	Author: Michal Zalewski Publisher: No Starch Press Category: Book List Price: ~~$39.95~~ Buy New: $3.89 You Save: $36.06 (90%) Buy New/Used from $3.60 Avg. Customer Rating: (24 reviews) Sales Rank: 36944 Format: Illustrated Media: Paperback Number Of Items: 1 Pages: 312 Shipping Weight (lbs): 1.3 Dimensions (in): 9.2 x 6.9 x 1 ISBN: 1593270461 Dewey Decimal Number: 005.8 UPC: 689145704617 EAN: 9781593270469 ASIN: 1593270461 Publication Date: April 15, 2005 Availability: Usually ships in 1-2 business days

Editorial Reviews: Product Description There are many ways that a potential attacker can intercept information, or learn more about the sender, as the information travels over a network. Silence on the Wire uncovers these silent attacks so that system administrators can defend against them, as well as better understand and monitor their systems. Silence on the Wire dissects several unique and fascinating security and privacy problems associated with the technologies and protocols used in everyday computing, and shows how to use this knowledge to learn more about others or to better defend systems. By taking an indepth look at modern computing, from hardware on up, the book helps the system administrator to better understand security issues, and to approach networking from a new, more creative perspective. The sys admin can apply this knowledge to network monitoring, policy enforcement, evidence analysis, IDS, honeypots, firewalls, and forensics.

Customer Reviews: Read 19 more reviews... Great read June 15, 2008 Nutshell review - This is a great read. Very entertaining and informative. Will really open your eyes and make you think about unusual information security issues and attack vectors. Interesting but academic February 6, 2008 Zalewski brought up a number of interesting and very innovative security situations and possibilities. The statistical derivation of content based upon CPU utilization, is something I had never even considered... but at the same time it looks like it could be more work than someone would be willing to invest. The writing style is also slightly academic. A fair amount of time is spent giving background and information about a topic when those who may see the situation will probably already understand the history. I will have to admit that this was not a page turner, but I am very happy I bought this book. It was just a little difficult to get through at times. Zalewski deals in the minutia December 14, 2007 1 out of 1 found this review helpful Silence on the Wire is not your typical security book detailing the latest application exploits or generalized security trends and attack prevention. Zalewski deals in the minutia. If you were to construct a Bell Curve of security knowledge and concepts, you would need to chop out a large portion of this graph and simply include the upper threshold, in which Zalewski thrives on the seemingly unknown. Zalewski takes a bottom-up approach. He dives right into the security of hardware design, Random Number Generation, and how this can all add up to information leakages otherwise known as security threats. If you have ever typed on a keyboard, then you may be interested in knowing what signature you are generating of yourself every time you log into that remote SSH console. Perhaps you might also be interested in the fact that simple mathematical operations, such as 2 * 100, could result in timing attacks against your algorithm, whereas 100 * 2 may not. Scary stuff. Zalewski continues with seemingly innocuous attacks that can occur before your IP packets ever leave the local network. It is unnerving to find out just how easy (and cheap) it is to reconstruct data from those blinking lights on your network equipment, or unsanitary Ethernet frames. Have you ever given thought to how nice it was to have virtual network auto-configuration on your switches? Well, so do your foes. Once your packets touch other nodes all across the Internet, that's when the real fun begins. If you are already familiar with the OSI Model and the TCP/IP suite, then your reading will hit a low point for the next thirty pages or so. However, when you emerge from this sand trap of common knowledge, most certainly provided to assist uninformed readers, you are met with quite worthy knowledge detailing the ability to accurately identify remote parties, who otherwise may wish to remain anonymous. Your choice of Operating System and Web Browser may help somewhat, but Zalewski shows how you can still be sniffed out even across the sea of the Internet. Zalewski concludes the book with a brief look at the entire Internet as an aggregate system, and how subtleties of its inner-workings can be exploited by those who understand them. It never once crossed my mind to utilize carefully constructed packets for distributed computing tasks acting as Boolean operations, but one of the final topics regarding parasitic storage does appear quite attainable. Zalewski's final chapter in the book leaves us with the lesson that sometimes all you need to do to discover the minutia, is to open your eyes. * p. 127: Figure 9-6, regarding TCP options, is incorrect. * p. 182/183: '6,4512' should read '64,512'. * p. 198: 'user-racking' should read 'user-tracking'. * p. 216: 'www.rogue-severs.com' should likely read 'www.rogue-servers.com'. * p. 233: 'recover the information he when it bounces back' should likely read 'recover the information when it bounces back'. Light Face of the Dark Side July 16, 2007 0 out of 2 found this review helpful The Global Network is not a battle ground. It is a play ground. This book although it covers security issues is great insight into the mentality that the security geeks can have. For them the security of platforms and networks are faulted and the hackers task is to disclose that. A Wonderful Treatment of Network Security June 12, 2007 4 out of 4 found this review helpful At a conference I was at some time ago, a fellow mentioned to me that one person he would probably not want to play poker with is Michal Zalewski. I didn't really get his statement at the time, but after reading this book, I can now wholeheartedly understand his reluctance. Although only 260 pages long, Michal's book covers an incredibly wide range of topics, pinpointing numerous areas in which incredible amounts of information about you and your computer are available, even though it may not seem that way at first blush. From the keyboard, to the processor, to the operating system, to the network wire, Michal points out the many holes from which this information is leaking from. His writing style gives rise to an entertaining narrative where a high-level picture makes the main concept available to everyone, while at the same time providing citations in the footnotes that let you delve into the details at a later point. Silence on the Wire impressed me in so many ways that it's difficult to list them all here. Michal's understanding of so many areas in computer security is simply astounding. He covers each topic in just enough detail, not bogging down the reader in lots of technical jargon, but also not doing an inordinate amount of 'hand-waving'. His movement through the various components of the computer and the network is very well done; it ties together in a nice progression that the reader can follow easily. I enjoyed the a nice selection of papers Michal discusses in which many ingenious attacks were described (timing attacks on RSA, SSH password recovery through timing analysis, TEMPEST, etc.). But one thing that truly stood out in this book is Michal's own contribution, which includes his work with p0f, the analysis of various ISN generators, and his work on identifying various web browsers through timing analysis. I was just amazed at how easily Michal pulled these 'fingerprints' out of seemingly random and/or innocuous data sets. I had actually read about much of the work that Silence on the Wire covers beforehand, but in spite of that I learned a great deal from this book, and I know that many others can too. If you only read one book on network security, make it this one!

Powered by: Dknc, inc. and Amazon.com

For your safety and security, orders are processed through amazon.com