Home > Store > Security > Network Security
Counter Hack Reloaded: A Step-by-Step Guide to Computer Attacks and Effective Defenses, 2nd Edition
- By Edward Skoudis, Tom Liston
- Published Dec 23, 2005 by Prentice Hall. Part of the Radia Perlman Series in Computer Networking and Security series.
- Copyright 2006
- Dimensions: 7x9-1/4
- Pages: 784
- Edition: 2nd
- Book
- ISBN-10: 0-13-148104-5
- ISBN-13: 978-0-13-148104-6
Register your product to gain access to bonus material or receive a coupon.
Product Author Bios
Ed Skoudis is a founder and senior security consultant for the Washington, D.C.-based network security consultancy, Intelguardians Network Intelligence, LLC. His expertise includes hacker attacks and defenses, the information security industry, and computer privacy issues. He has performed numerous security assessments, designed information security governance and operations teams for Fortune 500 companies, and responded to computer attacks for clients in financial, high technology, health care, and other industries. Ed has demonstrated hacker techniques for the U.S. Senate and is a frequent speaker on issues associated with hacker tools and defenses. He was also awarded 2004 and 2005 Microsoft MVP awards for Windows Server Security and is an alumnus of the Honeynet Project. Prior to Intelguardians, Ed served as a security consultant with International Network Services (INS), Predictive Systems, Global Integrity, SAIC, and Bell Communications Research (Bellcore).
Tom Liston is a senior analyst for the Washington, D.C.-based network security consultancy, Intelguardians Network Intelligence, LLC. He is the author of the popular open source network tarpit, LaBrea, for which he was a finalist for eWeek and PC Magazine’s Innovations In Infrastructure (i3) award in 2002. He is one of the handlers at the SANS Institute’s Internet Storm Center, where he deals daily with cutting edge security issues and authors a popular series of articles under the title “Follow the Bouncing Malware.” Mr. Liston resides in the teeming metropolis of Johnsburg, Illinois, and has four beautiful children (who demanded to be mentioned): Mary, Maggie, Erin, and Victoria.
“I finally get it! I used to hear words like rootkit, buffer overflow, and idle scanning, and they just didn’t make any sense. I asked other people and they didn’t seem to know how these things work, or at least they couldn’t explain them in a way that I could understand. Counter Hack Reloaded is the clearest explanation of these tools I have ever seen. Thank you!”
—Stephen Northcutt, CEO, SANS Institute
“Ed Skoudis does it again! With this new edition, Ed takes a phenomenal work to the next level! This book is a ‘must-have’ and a ‘must-read’ for anyone remotely associated with computers and computer security.”
—Harlan Carvey, CISSP, author of Windows Forensics and Incident Recovery
“Ed Skoudis is a rare individual. He knows the innards of all the various systems, knows all the latest exploits and defenses, and yet is able to explain everything at just the right level. The first edition of Counter Hack was a fascinating read. It’s technically intriguing and very clear. . . . A book on vulnerabilities, though, will get out of date, and so we definitely needed this updated and significantly rewritten second edition. This book is a wonderful overview of the field.”
—From the Foreword by Radia Perlman, series editor, The Radia Perlman Series in Computer Networking and Security; author of Interconnections; and coauthor of Network Security: Private Communications in a Public World
“What a great partnership! Ed Skoudis and Tom Liston share an uncanny talent for explaining even the most challenging security concepts in a clear and enjoyable manner. Counter Hack Reloaded is an indispensable resource for those who want to improve their defenses and understand the mechanics of computer attacks.”
—Lenny Zeltser, coauthor of Malware: Fighting Malicious Code
“Ed Skoudis does it again! With this new edition, Ed takes a phenomenal work to the next level! This book is a ‘must-have’ and a ‘must-read’ for anyone remotely associated with computers and computer security.”
—Harlan Carvey, CISSP, author of Windows Forensics and Incident Recovery
“In addition to having breadth of knowledge about and probing insights into network security, Ed Skoudis’s real strength is in his ability to show complex topics in an understandable form. By the time he’s done, what started off as a hopeless conglomeration of acronyms starts to sound comfortable and familiar. This book is your best source for understanding attack strategies, attack tools, and the defenses against both.”
—William Stearns, network security expert, www.stearns.org
“This book is a must-have for anyone in the Internet security game. It covers everything from the basic principles to the fine details of online attack methods and counter-strategies and is very engagingly written.”
—Warwick Ford, coauthor of Secure Electronic Commerce
For years, Counter Hack has been the primary resource for every network/system administrator and security professional who needs a deep, hands-on understanding of hacker attacks and countermeasures. Now, leading network security expert Ed Skoudis, with Tom Liston, has thoroughly updated this best-selling guide, showing how to defeat today’s newest, most sophisticated, and most destructive attacks.
For this second edition, more than half the content is new and updated, including coverage of the latest hacker techniques for scanning networks, gaining and maintaining access, and preventing detection. The authors walk you through each attack and demystify every tool and tactic. You’ll learn exactly how to establish effective defenses, recognize attacks in progress, and respond quickly and effectively in both UNIX/Linux and Windows environments.
Important features of this new edition include
- All-new “anatomy-of-an-attack” scenarios and tools
- An all-new section on wireless hacking: war driving, wireless sniffing attacks, and more
- Fully updated coverage of reconnaissance tools, including Nmap port scanning and “Google hacking”
- New coverage of tools for gaining access, including uncovering Windows and Linux vulnerabilities with Metasploit
- New information on dangerous, hard-to-detect, kernel-mode rootkits
Related Article
Scanning Tools: How Many Do We Really Need?
Author's Site
Please visit the author's website at www.counterhack.com.
|
67 of 70 people found the following review helpful
Simply magnificent. Start here to learn digital security., By
This review is from: Counter Hack: A Step-by-Step Guide to Computer Attacks and Effective Defenses (The Radia Perlman Series in Computer Networking and Security) (Paperback)
I am a senior engineer for network security operations, who has taught SANS, InfraGard, and FIRST audiences. Since late 1998 I've been looking for the one book I could recommend to newcomers to the digital security realm. Ed Skoudis' "Counter Hack" is that book. My previous reviews show I don't shelter weaker books, and I reserve praise for truly deserving titles. "Counter Hack" is a solid, accessible, practical title that merits my highest recommendation."Counter Hack" contains all I could ask for in an introductory book. Chapters three (30 pages) and four (40 pages) provide the basics of UNIX and Windows (respectively). For each operating system, one reads about file architecture, accountability, privileges, trust, and services. Armed with this background, "Counter Hack" then explains reconnaissance, scanning, application/OS-based attacks, network-based attacks, denial of service, maintaining access, and covering tracks... Read more
30 of 30 people found the following review helpful
Learn hacking strategies and defenses and have fun reading!!, By Michael Ressler (New Jersey, United States) - See all my reviews
This review is from: Counter Hack: A Step-by-Step Guide to Computer Attacks and Effective Defenses (The Radia Perlman Series in Computer Networking and Security) (Paperback)
This is a "fun to read" book that fully describes the methodology of hacking attacks. It is by far the most enjoyable book I have read on the subject. The book is not a textbook or a reference book, yet I found that I learned a lot while I read it and I have continuously referenced it for specifics of the techniques that are described.Ed starts by providing short intros to UNIX, NT and IP networking, which provide valuable info to readers who don't have good backgrounds in all three. He then walks the reader through the typical steps of an attack. Each of the sections, Reconnaissance, Scanning, Gaining and Maintaining Access and Covering Your Tracks contain well-written, up-to-the minute descriptions of the current methodologies found in the field as well as descriptions of the tools that are used. He references the authors of the tools and points to their web-sites. There is great info on Sam Spade, THC-Scan, Cheops, nmap, nessus, IDS evasion techniques, buffer... Read more
19 of 19 people found the following review helpful
Great 2nd edition to a classic book on hacking exploits, By
This review is from: Counter Hack Reloaded: A Step-by-Step Guide to Computer Attacks and Effective Defenses (2nd Edition) (Paperback)
Please note this review is for the 2nd Edition of this bookWhile "Counter Hack Reloaded" by Skoudis is an `Updated Edition of the Best-Seller' (per the book's cover), Counter Hack Reloaded (CHR) is really a new book in it's own right. CHR has gone through an extensive revision and is fully updated to meet today and tomorrow's emerging threats (i.e. wireless attacks). While 50% of the tools/exploits that are discussed in this book can be found in other `hack' books, the tools/exploits have been fully updated and document the latest commands. See page 21 of for a detailed explanation of CHR's updates. Some quick points of interest for me: * Page 228 - excellent, quick description of DNS's characteristics (when DNS uses UDP vs TCP). * Page 264 - good explanation of UDP vs ICMP pings (something to remember when troubleshooting connectivity from different platforms). * Chapter 7 - Gaining Access at the OS and App level - very good discussion of buffer... Read more |
Online Sample Chapter
Gaining Access to Target Systems Using Application and Operating System Attacks
Index
Download the Index
file related to this title.
Foreword
Download the Foreword
file related to this title.
Table of Contents
(NOTE: Each chapter concludes with Summary).
Foreword.
Preface Reloaded.
About the Authors.
1. Introduction.
The Computer World and the Golden Age of Hacking.
Why This Book?
The Threat: Never Underestimate Your Adversary.
A Note on Terminology and Iconography.
Caveat: These Tools Could Hurt You.
Organization of Rest of the Book.
2. Networking Overview: Pretty Much Everything You Need to Know About Networking to Follow the Rest of This Book.
The OSI Reference Model and Protocol Layering.
How Does TCP/IP Fit In?
Understanding TCP/IP.
Transmission Control Protocol (TCP).
User Datagram Protocol (UDP).
Internet Protocol (IP) and Internet Control Message Protocol (ICMP).
ICMP.
Other Network-Level Issues.
Don’t Forget About the Data Link and Physical Layers!
Security Solutions for the Internet.
Conclusion.
3. Linux and UNIX Overview: Pretty Much Everything You Need to Know About Linux and UNIX to Follow the Rest of This Book.
Introduction.
Architecture.
Accounts and Groups.
Linux and UNIX Permissions.
Linux and UNIX Trust Relationships.
Common Linux and UNIX Network Services.
Conclusion.
4. Windows NT/000/XP/00 Overview: Pretty Much Everything You Need to Know About Windows to Follow the Rest of This Book.
Introduction.
A Brief History of Time.
The Underlying Windows Operating System Architecture.
How Windows Password Representations Are Derived.
Kernel Mode.
From Service Packs and Hotfixes to Windows Update and Beyond.
Accounts and Groups.
Privilege Control.
Policies
Trust.
Auditing.
Object Access Control and Permissions.
Network Security.
Windows 2000 and Beyond: Welcome to the New Millennium.
Conclusion.
5. Phase 1: Reconnaissance.
Low-Technology Reconnaissance: Social Engineering, Caller ID Spoofing, Physical Break-In, and Dumpster Diving.
Search the Fine Web (STFW).
Who is Databases: Treasure Chests of Information.
The Domain Name System.
General-Purpose Reconnaissance Tools.
Conclusion.
6. Phase 2: Scanning.
War Driving: Finding Wireless Access Points.
War Dialing: Looking for Modems in All the Right Places.
Network Mapping.
Determining Open Ports Using Port Scanners.
Vulnerability-Scanning Tools.
Intrusion Detection System and Intrusion Prevention System Evasion.
Conclusion.
7. Phase 3: Gaining Access Using Application and Operating System Attacks.
Script Kiddie Exploit Trolling.
Pragmatism for More Sophisticated Attackers.
Buffer Overflow Exploits.
Password Attacks.
Web Application Attacks.
Exploiting Browser Flaws.
Conclusion.
8. Phase 4: Gaining Access Using Network Attacks.
Sniffing.
IP Address Spoofing.
Session Hijacking.
Netcat: A General-Purpose Network Tool.
Conclusion.
9. Phase 3: Denial-of-Service Attacks.
Locally Stopping Services.
Locally Exhausting Resources.
Remotely Stopping Services.
Remotely Exhausting Resources.
Conclusion.
10. Phase 4: Maintaining Access: Trojans, Backdoors, and Rootkits ... Oh My!
Trojan Horses.
Backdoors.
The Devious Duo: Backdoors Melded into Trojan Horses.
Nasty: Application-Level Trojan Horse Backdoor Tools.
Also Nasty: The Rise of the Bots.
Additional Nastiness: Spyware Everywhere!
Defenses Against Application-Level Trojan Horse Backdoors, Bots, and Spyware.
Even Nastier: User-Mode Rootkits.
Defending Against User-Mode Rootkits.
Nastiest: Kernel-Mode Rootkits.
Defending Against Kernel-Mode Rootkits.
Conclusion.
11. Phase 5: Covering Tracks and Hiding.
Hiding Evidence by Altering Event Logs.
Defenses Against Log and Accounting File Attacks.
Creating Difficult-to-Find Files and Directories.
Hiding Evidence on the Network: Covert Channels.
Defenses Against Covert Channels.
Conclusion.
12. Putting It All Together: Anatomy of an Attack.
Scenario 1: Crouching Wi-Fi, Hidden Dragon.
Scenario 2: Death of a Telecommuter.
Scenario 3: The Manchurian Contractor.
Conclusion.
13. The Future, References, and Conclusions.
Where Are We Heading?
Keeping Up to Speed.
Final Thoughts ... Live Long and Prosper.
Index.
Downloadable Sample Chapter
Download the Sample
Chapter related to this title.
This book includes free shipping!
- Request an Instructor or Media review copy.
- Corporate, Academic, and Employee Purchases
- International Buying Options
Get access to thousands of books and training videos about technology, professional development and digital media from more than 40 leading publishers, including Addison-Wesley, Prentice Hall, Cisco Press, IBM Press, O'Reilly Media, Wrox, Apress, and many more. If you continue your subscription after your 30-day trial, you can receive 30% off a monthly subscription to the Safari Library for up to 12 months. That's a total savings of $199.
