Stealing the Network: How to Own a Shadow by Johnny Long, Ryan Russell, and Timothy Mullen


51FHLxmB11L._SX218_BO1204203200_QL40_.jpg Author Johnny Long, Ryan Russell, and Timothy Mullen
Isbn 9781597490818
File size 9MB
Year 2007
Pages 448
Language English
File format PDF
Category security



 

363_Web_App_FM.qxd 12/19/06 10:46 AM Page ii 384_STS_FM.qxd 1/3/07 10:04 AM Page i Visit us at www.syngress.com Syngress is committed to publishing high-quality books for IT Professionals and delivering those books in media and formats that fit the demands of our customers. We are also committed to extending the utility of the book you purchase via additional materials available from our Web site. SOLUTIONS WEB SITE To register your book, visit www.syngress.com/solutions. Once registered, you can access our [email protected] Web pages. There you may find an assortment of value-added features such as free e-books related to the topic of this book, URLs of related Web sites, FAQs from the book, corrections, and any updates from the author(s). ULTIMATE CDs Our Ultimate CD product line offers our readers budget-conscious compilations of some of our best-selling backlist titles in Adobe PDF form. These CDs are the perfect way to extend your reference library on key topics pertaining to your area of expertise, including Cisco Engineering, Microsoft Windows System Administration, CyberCrime Investigation, Open Source Security, and Firewall Configuration, to name a few. DOWNLOADABLE E-BOOKS For readers who can’t wait for hard copy, we offer most of our titles in downloadable Adobe PDF form. These e-books are often available weeks before hard copies, and are priced affordably. SYNGRESS OUTLET Our outlet store at syngress.com features overstocked, out-of-print, or slightly hurt books at significant savings. SITE LICENSING Syngress has a well-established program for site licensing our e-books onto servers in corporations, educational institutions, and large organizations. Contact us at [email protected] for more information. CUSTOM PUBLISHING Many organizations welcome the ability to combine parts of multiple Syngress books, as well as their own content, into a single volume for their own internal use. Contact us at [email protected] for more information. 384_STS_FM.qxd 1/3/07 10:04 AM Page ii 384_STS_FM.qxd 1/3/07 10:04 AM Page iii STEALING THE NETWORK How to Own a Shadow THE C HASE FOR K NUTH Johnny Long Timothy (Thor) Mullen Ryan Russell 384_STS_FM.qxd 1/3/07 10:04 AM Page iv Syngress Publishing, Inc., the author(s), and any person or firm involved in the writing, editing, or production (collectively “Makers”) of this book (“the Work”) do not guarantee or warrant the results to be obtained from the Work. There is no guarantee of any kind, expressed or implied, regarding the Work or its contents.The Work is sold AS IS and WITHOUT WARRANTY.You may have other legal rights, which vary from state to state. In no event will Makers be liable to you for damages, including any loss of profits, lost savings, or other incidental or consequential damages arising out from the Work or its contents. Because some states do not allow the exclusion or limitation of liability for consequential or incidental damages, the above limitation may not apply to you. You should always use reasonable care, including backup and other appropriate precautions, when working with computers, networks, data, and files. Syngress Media®, Syngress®, “Career Advancement Through Skill Enhancement®,” “Ask the Author UPDATE®,” and “Hack Proofing®,” are registered trademarks of Syngress Publishing, Inc. “Syngress:The Definition of a Serious Security Library”™, “Mission Critical™,” and “The Only Way to Stop a Hacker is to Think Like One™” are trademarks of Syngress Publishing, Inc. Brands and product names mentioned in this book are trademarks or service marks of their respective companies. KEY 001 002 003 004 005 006 007 008 009 010 SERIAL NUMBER HJIRTCV764 PO9873D5FG 829KM8NJH2 YRT43998KL CVPLQ6WQ23 VBP965T5T5 HJJJ863WD3E 2987GVTWMK 629MP5SDJT IMWQ295T6T PUBLISHED BY Syngress Publishing, Inc. 800 Hingham Street Rockland, MA 02370 Stealing the Network: How to Own a Shadow Copyright © 2007 by Elsevier, Inc. All rights reserved. Except as permitted under the Copyright Act of 1976, no part of this publication may be reproduced or distributed in any form or by any means, or stored in a database or retrieval system, without the prior written permission of the publisher, with the exception that the program listings may be entered, stored, and executed in a computer system, but they may not be reproduced for publication. 1 2 3 4 5 6 7 8 9 0 ISBN-10: 1-59749-081-4 ISBN-13: 978-1-59749-081-8 Publisher: Andrew Williams Editor: D. Scott Pinzon Page Layout and Art: Patricia Lupien Copy Editor: Christina LaPrue For information on rights, translations, and bulk sales, contact Matt Pedersen, Director of Sales and Rights, email [email protected] 384_STS_FM.qxd 1/3/07 10:04 AM Page v Acknowledgments Syngress would like to acknowledge the following people for their kindness and support in making this book possible. A special thank you to all of the authors and editors who worked on the first three books in the “Stealing” series, each of whom is listed individually later in this front matter. To Jeff Moss and Ping Look of Black Hat, Inc. who have been great friends and supporters of the Syngress publishing program over the years.The Black Hat Briefings have provided the perfect setting for many Stealing brainstorming sessions. v 384_STS_FM.qxd 1/3/07 10:04 AM Page vi 384_STS_FM.qxd 1/3/07 10:04 AM Page vii Authors Johnny Long: Author, Technical Edit, Primary Stealing Character: Pawn Who’s Johnny Long? Johnny is a Christian by grace, a family guy by choice, a professional hacker by trade, a pirate by blood, a ninja in training, a security researcher and author. My home on the web is http://johnny.ihackstuff.com. This page can support only fraction of all I am thankful for.Thanks first to Christ without whom I am nothing.Thanks to Jen, Makenna,Trevor and Declan.You guys pay the price when deadlines hit, and this book in particular has taken me away from you for far too long.Thanks for understanding and supporting me.You have my love, always. Thanks to Andrew and Christina (awesome tech edit) and the rest of my Syngress family.Thanks to Ryan Russell (Blue Boar) for your contributions over the years and for Knuth.What a great character! Thanks to Tim “Thor” Mullen.We work so well together, and your great ideas and collaborative contributions aside, you are a great friend. Thanks to Scott Pinzon for the guidance and the editorial work.Your contribution to this project has literally transformed my writing. Thanks to Pawn. If I have my say, we’ll meet again. Thanks to the johnny.ihackstuff.com mods (Murf, Jimmy Neutron, JBrashars, CP Klouw, Sanguis,ThePsyko,Wolveso) and members for your help and support.Thanks to RFIDeas for the support, and to Pablos for the RFID gear.Thanks to Roelof and Sensepost for BiDiBLAH, to NGS for the great docs, to nummish and xeron for Absinthe. Thanks to everyone at the real Mitsuboshi dojo, including Shidoshi and Mrs.Thompson, Mr.Thompson, Mr. Stewart, Mrs. Mccarron, Mrs. Simmons, Mr. Parsons, Mr. Birger, Mr. Barnett, Ms. Simmons, Mr. Street, Mrs. Hebert, Mrs. Kos, Mrs.Wagner and all those not listed on the official instructor sheet. vii 384_STS_FM.qxd 1/3/07 10:04 AM Page viii Shouts: Nathan “Whatever” Bowers, Stephen S, Mike “Sid A. Biggs”, John Lindner, Chaney, Jenny Yang, SecurityTribe, the Shmoo Group, Sensepost, Blackhat, Defcon, Neal Stephenson (Baroque), Stephen King (On Writing),Ted Dekker (Thr3e), Project86, Shadowvex, Green Sector, Matisyahu,Thousand Foot Krutch, KJ-52 (Slim Part 2).To Jason Russell, Bobby Bailey and Laren Poole for the Invisible Children movement (http://www.invisiblechildren.com). Timothy (Thor) Mullen: Created concept for this book, Author, Technical Edit, Primary Stealing Character: Gayle Thor has been educating and training users in the technology sector since 1983 when he began teaching BASIC and COBOL through a special educational program at the Medical University of South Carolina (while still a high school senior). He then launched his professional career in application development and network integration in 1984. Timothy is now CIO and Chief Software Architect for Anchor Sign, one of the 10 largest sign-system manufacturers in America. He has developed and implemented Microsoft networking security solutions for institutions like the US Air Force, Microsoft, the US Federal Courts, regional power plants, and international banking/financial institutions. He has developed applications ranging from military aircraft statistics interfaces and biological aqua-culture management to nuclear power-plant effects monitoring for private, government, and military entities.Timothy is currently being granted a patent for the unique architecture of his payroll processing engine used in the AnchorIS accounting solutions suite. Timothy has been a columnist for Security Focus’ Microsoft section, and is a regular contributor of InFocus technical articles. Also known as “Thor,” he is the founder of the “Hammer of God” security co-op group. His writings appear in multiple publications such as Hacker’s Challenge, the Stealing the Network series, and in Windows XP Security. His security tools, techniques and processes viii 384_STS_FM.qxd 1/3/07 10:04 AM Page ix have been featured in Hacking Exposed and New Scientist Magazine, as well as in national television newscasts and technology broadcasts. His pioneering research in “strikeback” technology has been cited in multiple law enforcement and legal forums, including the International Journal of Communications Law and Policy. Timothy holds MCSE certifications in all recent Microsoft operating systems, has completed all Microsoft Certified Trainer curriculums and is a Microsoft Certified Partner. He is a member of American Mensa, and has recently been awarded the Microsoft “Most Valuable Professional” (MVP) award in Windows Security for the second straight year. I would like to say thanks to Andrew for all of his patience and support during the creation of this, the fourth book in our Stealing series. I know it’s been tough, but we did it.You rock. Thanks for letting me be me. To Ryan Russell, thanks for the hard work. I really appreciate it, even though I bet you won’t thank me for anything in your damn bio! Four books together! Whoda thunk? And J-L0, man, what a good time. As always, a great time working with you through the wee hours of the night talking tech and making stuff up. I smell a movie in our future! I’d like to give a big thanks to Scott Pinzon, who totally came through for us.You’ve made a big difference in our work, sir. And thanks to Christine for the hard work on the back end. Hope I didn’t ruin your holidays 😉 Thanks to the “real” Ryan from Reno who helped spark this whole thing so many years ago. I have no idea where you are now, but I hope you’ve got everything you want. Shout-outs to Tanya, Gayle, Christine, Tracy, Amber and my “family” at ‘flings. ix 384_STS_FM.qxd 1/3/07 10:04 AM Page x Ryan Russell (aka Blue Boar):Veteran “Stealing” Author, Primary Stealing Characters: Robert Knuth, and Bobby Knuth, Jr. Ryan has worked in the IT field for over 16 years, focusing on information security for the last ten. He was the lead author of Hack Proofing Your Network, Second Edition (Syngress, ISBN: 1-928994-70-9), contributing author and technical editor of Stealing the Network: How to Own the Box (Syngress, ISBN: 1-931836-87-6), and is a frequent technical editor for the Hack Proofing series of books from Syngress. Ryan was also a technical advisor on Snort 2.0 Intrusion Detection (Syngress, ISBN: 1931836-74-4). Ryan founded the vuln-dev mailing list, and moderated it for three years under the alias “Blue Boar.” He is a frequent lecturer at security conferences, and can often be found participating in security mailing lists and website discussions. Ryan is the QA Manager at BigFix, Inc. I would like to thank my wife and kids for their patience while I finished up this book. Sara, we’ll get your belly dancing scene in one of these days. If there is any improvement in my writing on this book, that is almost certainly due to Scott Pinzon’s help.The remaining errors and inadequacies are mine. In particular, I’d like to acknowledge both Scott and Christina LaPrue for going above and beyond the call of duty in editing our work. And last but not least, I want to thank the readers who have been following the series, and writing me to ask when the next book will be out. I hope you enjoy it. x 384_STS_FM.qxd 1/3/07 10:04 AM Page xi Story Editor D. Scott Pinzon (CISSP, NSA-IAM) has worked in network security for seven years, and for seventeen years has written about high technology for clients both large (Weyerhaeuser’s IT department) and small (Seattle’s first cash machine network). As Editor-in-Chief of WatchGuard Technologies’ LiveSecurity Service, he has edited and published well over 1,300 security alerts and “best practices” network security articles for a large audience of IT professionals. He is the director and co-writer of the popular “Malware Analysis” video series, viewable on YouTube and Google Video by searching on “LiveSecurity.” Previously, as the founder and creative director of Pilcrow Book Services, Scott supervised the production of more than 50 books, helping publishers take manuscripts to bookstore-ready perfection. He studied Advanced Commercial Fiction at the University of Washington. Scott has authored four published young adult books and sold 60 short stories. Technical Inspiration Roelof Temmingh was the 4th child born in a normal family of 2 acclaimed academic musicians in South Africa.This is where all normality for him stopped. Driven by his insatiable infolust he furthered his education by obtaining a B Degree in Electronic Engineering. Roelof ’s obsession with creativity lead him to start a company along with a similar minded friend.Together they operated from a master bedroom at Roelof ’s house and started SensePost. During his time at SensePost Roelof became a veteran BlackHat trainer/speaker and spoke at RSA and Ruxcon - to name a few. He also contributed to many Syngress books such as ‘How to own a continent’ and ‘Aggressive Network Self Defense’. SensePost xi 384_STS_FM.qxd 1/3/07 10:04 AM Page xii is continuing business as usual although Roelof left at the end of 2006 in order to pursue R&D in his own capacity. Roelof thrives on “WOW”, he embodies weird and he craves action. He loves to initiate and execute great ideas and lives for seeing the end product “on the shelves.” Roelof like to be true to himself and celebrate the “weird ones.” His creativity can be found in the names and function of the tools that he created - from Wikto and the infamous BiDiBLAH (whom someone fondly described as “having a seizure on the keyboard”) to innovative tools like Crowbar and Suru. NGS Software is the leader in database vulnerability assessment. Founded by David and Mark Litchfield in 2001 the team at NGS has pioneered advanced testing techniques, which are both accurate and safe and which are employed by NGSSQuirreL, the award winning VA and security compliance tool for Oracle, SQL Server, DB2, Informix and Sybase. Used as the tool of choice by government, financial, utilities and consulting organizations across the world, NGSSQuirreL is unbeatable. SensePost is an independent and objective organization specializing in IT Security consultation, training and assessment services.The company is situated in South Africa from where it provides services primarily large and very large clients in Australia, South Africa, Germany, Switzerland, Belgium,The Netherlands, United Kingdom, Malaysia, Gibraltar, Panama, the USA, and various African countries. The majority of these clients are in the financial services industry, government, gaming and manufacturing where information security is an essential part of their core competency. SensePost analysts are regular speakers at international conferences including BlackHat Briefings, RSA, etc and the SensePost ‘Innovation Center’ produces a number of leading open-source and commercial security tools like BiDiBLAH, Wikto, Suru etc. For more information visit http://www.sensepost.com. xii 384_STS_FM.qxd 1/3/07 10:04 AM Page xiii This book would not have been possible without the first three books in the “Stealing” series.The following are the authors and editors of those books. Contributing Authors and Technical Editors, STN: How to Own an Identity Stealing Character: Ryan, Chapter 4, and author of Chapter 12, “Social Insecurity.” Created concept for this book. Timothy Mullen (Thor) has been educating and training users in the technology sector since 1983 when he began teaching BASIC and COBOL through a special program at the Medical University of South Carolina— while still a senior in high school. Launching his professional career in application development and network integration in 1984, Mullen is now CIO and Chief Software Architect for AnchorIS.Com, a developer of secure enterprise-based accounting solutions. Mullen has developed and implemented Microsoft networking and security solutions for institutions like the US Air Force, Microsoft, the US Federal Court systems, regional power generation facilities and international banking/financial institutions. He has developed a myriad of applications from military aircraft statistics interfaces and biological aqua-culture management to nuclear power-plant effects monitoring for private, government, and military entities.Timothy is currently being granted a patent for the unique architecture of his payroll processing engine used in the AnchorIS accounting solutions suite. Mullen has been a columnist for Security Focus’s Microsoft section, and is a regular contributor of InFocus technical articles. AKA “Thor,” he is the founder of the “Hammer of God” security co-op group. Mullen’s writings appear in multiple publications such as Hacker’s Challenge and the Stealing the Network (Syngress ISBN 1-931836-87-6 and 1-931836-05-1) series, technical edits in Windows XP Security, with security tools and techniques features in publications such as the Hacking Exposed series and New Scientist magazine. Mullen is a member of American Mensa, and has recently been awarded the Microsoft “Most Valuable Professional” award in Windows Security. xiii 384_STS_FM.qxd 1/3/07 10:04 AM Page xiv Chapters 7, 10, and Epilogue. Johnny Long is a “clean-living” family guy who just so happens to like hacking stuff. Over the past two years, Johnny’s most visible focus has been on this Google hacking “thing” which has served as yet another diversion to a serious (and bill-paying) job as a professional hacker and security researcher for Computer Sciences Corporation. In his spare time, Johnny enjoys making random pirate noises (“Yarrrrr! Savvy?”), spending time with his wife and kids, convincing others that acting like a kid is part of his job as a parent, feigning artistic ability with programs like Bryce and Photoshop, pushing all the pretty shiny buttons on them new-fangled Mac computers, and making much-too-serious security types either look at him funny or start laughing uncontrollably. Johnny has written or contributed to several books, including the popular book Google Hacking for Penetration Testers (Syngress, ISBN: 1931836-36-1), which has secured rave reviews and has lots of pictures. Thanks first to Christ without whom I am nothing.To Jen, Makenna,Trevor and Declan, my love always.Thanks to Anthony for his great insight into LE and the forensics scene, and the “AWE-some” brainstorming sessions.Thanks to Jaime and Andrew at Syngress and all the authors on this project (an honour, really!) and especially to Tom, Jay, Ryan and Thor for your extra support and collaboration. Also to Chris Daywalt, Regina L, Joe Church,Terry M, Jason Arnold (Nexus!) and all the mods on JIHS for your help and support. Shouts to Nathan, Sujay, Stephen S, SecurityTribe, the Shmoo Group, Sensepost, Blackhat, Defcon, Pillar, Project86, Superchic[k], DJ Lex, Echoing Green. “I long for the coming of chapter two / to put an end to this cycle of backlash / So I start where the last chapter ended / But the veil has been lifted, my thoughts are sifted / Every wrong is righted / The new song I sing with every breath, breathes sight in” -‘Chapter 2’ by Project86. xiv 384_STS_FM.qxd 1/3/07 10:04 AM Page xv Contributing Authors Stealing Character: The woman with no name, Chapter 1. Riley “Caezar” Eller has extensive experience in Internet embedded devices and protocol security. He invented automatic web vulnerability analysis and ASCIIarmored stack overflow exploits, and contributed to several other inventions including a pattern language for describing network attacks. His credits include the Black Hat Security Briefings and Training series, “Meet the Enemy” seminars, the books Hack Proofing Your Network: Internet Tradecraft (Syngress, ISBN: 1-928994-15-6), and the “Caezar’s Challenge” think tank. As creator of the Root Fu scoring system and as a founding member of the only team ever to win three consecutive DEFCON Capture the Flag contests, Caezar is the authority on security contest scoring. Stealing Characters: Robert Knoll, Senior (Knuth) Prologue. Robert Knoll, Junior, Chapter 2. Ryan Russell (Blue Boar) has worked in the IT field for over 13 years, focusing on information security for the last seven. He was the lead author of Hack Proofing Your Network, Second Edition (Syngress, ISBN: 1-928994-70-9), contributing author and technical editor of Stealing The Network: How to Own The Box (Syngress, ISBN: 1-93183687-6), and is a frequent technical editor for the Hack Proofing series of books from Syngress. Ryan was also a technical advisor on Snort 2.0 Intrusion Detection (Syngress, ISBN: 1-931836-74-4). Ryan founded the vuln-dev mailing list, and moderated it for three years under the alias “Blue Boar.” He is a frequent lecturer at security conferences, and can often be found participating in security mailing lists and website discussions. Ryan is the QA Manager at BigFix, Inc. xv 384_STS_FM.qxd 1/3/07 10:04 AM Page xvi Stealing Character: Saul, Chapter 3. Chris Hurley (Roamer), is a Senior Penetration Tester working in the Washington, DC area. He is the founder of the WorldWide WarDrive, a four-year effort by INFOSEC professionals and hobbyists to generate awareness of the insecurities associated with wireless networks and is the lead organizer of the DEF CON WarDriving Contest. Although he primarily focuses on penetration testing these days, Chris also has extensive experience performing vulnerability assessments, forensics, and incident response. Chris has spoken at several security conferences and published numerous whitepapers on a wide range of INFOSEC topics. Chris is the lead author of WarDriving: Drive, Detect, Defend (Syngress, ISBN: 1-931836-03-5), and a contributor to Aggressive Network Self-Defense (Syngress, ISBN: 1-931836-20-5) and InfoSec Career Hacking (Syngress, ISBN: 1-59749-011-3). Chris holds a bachelor’s degree in computer science. He lives in Maryland with his wife Jennifer and their daughter Ashley. Stealing Character: Glenn, Chapter 5. Brian Hatch is Chief Hacker at Onsight, Inc., where he is a Unix/Linux and network security consultant. His clients have ranged from major banks, pharmaceutical companies and educational institutions to major California web browser developers and dot-coms that haven’t failed. He has taught various security, Unix, and programming classes for corporations through Onsight and as an adjunct instructor at Northwestern University. He has been securing and breaking into systems since before he traded in his Apple II+ for his first Unix system. Brian is the lead author of Hacking Linux Exposed, and co-author of Building Linux VPNs, as well as article for various online sites such as SecurityFocus, and is the author of the not-so-weekly Linux Security:Tips,Tricks, and Hackery newsletter. Brian spends most of his non-work time thinking about the security and scheduling ramifications of the fork(2) system calls, which has resulted in three child processes, two of which were caused directly clone(2), but since CLONE_VM was not set, all memory pages have since diverged independently. He has little time for writing these days, as he’s always dealing with $SIG{ALRM}s around the house. xvi 384_STS_FM.qxd 1/3/07 10:04 AM Page xvii Though a LD_PRELOAD vulnerability in his lifestyle, the /usr/lib/libc.a sleep(3) call has been hijacked to call nanosleep(3) instead, and sadly the arguments have not increased to match. Stealing Character: Natasha, Chapter 6. Raven Alder is a Senior Security Engineer for IOActive, a consulting firm specializing in network security design and implementation. She specializes in scalable enterpriselevel security, with an emphasis on defense in depth. She designs large-scale firewall and IDS systems, and then performs vulnerability assessments and penetration tests to make sure they are performing optimally. In her copious spare time, she teaches network security for LinuxChix.org and checks cryptographic vulnerabilities for the Open Source Vulnerability Database. Raven lives in Seattle, Washington. Raven was a contributor to Nessus Network Auditing (Syngress, ISBN: 1-931836-08-6) Stealing Character: Flir, Chapter 8. Jay Beale is an information security specialist, well known for his work on mitigation technology, specifically in the form of operating system and application hardening. He’s written two of the most popular tools in this space: Bastille Linux, a lockdown tool that introduced a vital securitytraining component, and the Center for Internet Security’s Unix Scoring Tool. Both are used worldwide throughout private industry and government.Through Bastille and his work with CIS, Jay has provided leadership in the Linux system hardening space, participating in efforts to set, audit, and implement standards for Linux/Unix security within industry and government. He also focuses his energies on the OVAL project, where he works with government and industry to standardize and improve the field of vulnerability assessment. Jay is also a member of the Honeynet Project, working on tool development. Jay has served as an invited speaker at a variety of conferences worldwide, as well as government symposia. He’s written for Information Security Magazine, SecurityFocus, and the now-defunct SecurityPortal.com. He has worked on four books in the information security space.Three of these, including the best-selling Snort 2.1 Intrusion Detection (Syngress, ISBN: 1-9318360-43-) make up his Open Source Security Series, while one is a technical work of fiction entitled Stealing the Network: How xvii 384_STS_FM.qxd 1/3/07 10:04 AM Page xviii to Own a Continent (Syngress, ISBN: 1-931836-05-1).” Jay makes his living as a security consultant with the firm Intelguardians, which he co-founded with industry leaders Ed Skoudis, Eric Cole, Mike Poor, Bob Hillery and Jim Alderson, where his work in penetration testing allows him to focus on attack as well as defense. Prior to consulting, Jay served as the Security Team Director for MandrakeSoft, helping set company strategy, design security products, and pushing security into the third largest retail Linux distribution. Jay Beale would like to recognize the direct help of Cynthia Smidt in polishing this chapter. She’s the hidden force that makes projects like these possible. Stealing Character: Carlton, Chapter 9. Tom Parker is a computer security analyst who, alongside his work providing integral security services for some of the world’s largest organizations, is widely known for his vulnerability research on a wide range of platforms and commercial products. His most recent work includes the development of an embedded operating system, media management system and cryptographic code for use on digital video band (DVB) routers, deployed on the networks of hundreds of large organizations around the globe. In 1999,Tom helped form Global InterSec LLC, playing a leading role in developing key relationships between GIS and the public and private sector security companies. Whilst continuing his vulnerability research, focusing on emerging threats, technologies and new vulnerability exploitation techniques,Tom spends much of his time researching methodologies aimed at characterizing adversarial capabilities and motivations against live, mission critical assets. He provides methodologies to aid in adversarial attribution in the unfortunate times when incidents do occur. Currently working for NetSec, a leading provider of managed and professional security services,Tom continues his research into finding practical ways for large organizations to manage the ever growing cost of security, through identifying where the real threats lay, and by defining what really matters. Tom regularly presents at closed-door and public security conferences, including the Blackhat briefings, and is often referenced by the world’s media on matters relating to computer security. In the past,Tom has appeared on BBC News and is frequently quoted by the likes of Reuters News and ZDNet. xviii

Author Johnny Long, Ryan Russell, and Timothy Mullen Isbn 9781597490818 File size 9MB Year 2007 Pages 448 Language English File format PDF Category Security Book Description: FacebookTwitterGoogle+TumblrDiggMySpaceShare The best-selling Stealing the Network series reaches its climactic conclusion as law enforcement and organized crime form a high-tech web in an attempt to bring down the shadowy hacker-villain known as Knuth in the most technically sophisticated Stealing book yet. Stealing the Network: How to Own a Shadow is the final book in Syngress’ ground breaking, best-selling, Stealing the Network series. As with previous title, How to Own a Shadow is a fictional story that demonstrates accurate, highly detailed scenarios of computer intrusions and counter-strikes. In How to Own a Thief, Knuth, the master-mind, shadowy figure from previous books, is tracked across the world and the Web by cyber adversaries with skill to match his own. Readers will be amazed at how Knuth, Law Enforcement, and Organized crime twist and torque everything from game stations, printers and fax machines to service provider class switches and routers steal, deceive, and obfuscate. From physical security to open source information gathering, Stealing the Network: How to Own a Shadow will entertain and educate the reader on every page. The final book in the Stealing the Network series will be a must read for the 50,000 readers worldwide of the first three titles Law enforcement and security professionals will gain practical, technical knowledge for apprehending the most supplicated cyber-adversaries     Download (9MB) The Cyber Pirates: A comprehensive guide to the internet from a hacker’s eye Statistical Methods in Computer Security The Cyber Pirates: A Comprehensive Guide To The Internet From A Hacker’s Eye Effective Python Penetration Testing Tangled Web: Tales of Digital Crime from the Shadows of Cyberspace Load more posts

Leave a Reply

Your email address will not be published. Required fields are marked *