Share
Create bookmark
Security Power Tools
Notes
Please login to add notes
- Table of Contents
- Foreword
- + Credits
-
+
Preface
- Part I
- + Legal and Ethics Issues
- Part II
-
+
Network Scanning
- + 2.1 How Scanners Work
- 2.2 Superuser Privileges
- 2.3 Three Network Scanners to Consider
- + 2.4 Host Discovery
- + 2.5 Port Scanning
- + 2.6 Specifying Custom Ports
- 2.7 Specifying Targets to Scan
- + 2.8 Different Scan Types
- + 2.9 Tuning the Scan Speed
- 2.10 Application Fingerprinting
- 2.11 Operating System Detection
- 2.12 Saving Nmap Output
- 2.13 Resuming Nmap Scans
- + 2.14 Avoiding Detection
- 2.15 Conclusion
- + Vulnerability Scanning
-
+
LAN Reconnaissance
-
+
Wireless Reconnaissance
- 5.1 Get the Right Wardriving Gear
- 5.2 802.11 Network Basics
- 5.3 802.11 Frames
- 5.4 How Wireless Discovery Tools Work
- 5.5 Netstumbler
- 5.6 Kismet at a Glance
- 5.7 Using Kismet
- 5.8 Sorting the Kismet Network List
- 5.9 Using Network Groups with Kismet
- 5.10 Using Kismet to Find Networks by Probe Requests
- + 5.11 Kismet GPS Support Using gpsd
- 5.12 Looking Closer at Traffic with Kismet
- 5.13 Capturing Packets and Decrypting Traffic with Kismet
- + 5.14 Wireshark at a Glance
- 5.15 Using Wireshark
- 5.16 AirDefense Mobile
- 5.17 AirMagnet Analyzers
- + 5.18 Other Wardriving Tools
-
+
Custom Packet Generation
- + 6.1 Why Create Custom Packets?
- + 6.2 Hping
-
+
6.3 Scapy
- + 6.4 Packet-Crafting Examples with Scapy
- + 6.5 Packet Mangling with Netfilter
- 6.6 References
- Part III
-
+
Metasploit
- + 7.1 Metasploit Interfaces
- 7.2 Updating Metasploit
- 7.3 Choosing an Exploit
- + 7.4 Choosing a Payload
- + 7.5 Setting Options
- + 7.6 Running an Exploit
- + 7.7 Managing Sessions and Jobs
- + 7.8 The Meterpreter
- 7.9 Security Device Evasion
- 7.10 Sample Evasion Output
- + 7.11 Evasion Using NOPs and Encoders
- 7.12 In Conclusion
- + Wireless Penetration
-
+
Exploitation Framework Applications
- + 9.1 Task Overview
- + 9.2 Core Impact Overview
- + 9.3 Network Reconnaissance with Core Impact
- 9.4 Core Impact Exploit Search Engine
- + 9.5 Running an Exploit
- + 9.6 Running Macros
- 9.7 Bouncing Off an Installed Agent
- 9.8 Enabling an Agent to Survive a Reboot
- 9.9 Mass Scale Exploitation
- 9.10 Writing Modules for Core Impact
- + 9.11 The Canvas Exploit Framework
- 9.12 Porting Exploits Within Canvas
- 9.13 Using Canvas from the Command Line
- 9.14 Digging Deeper with Canvas
- 9.15 Advanced Exploitation with MOSDEF
- 9.16 Writing Exploits for Canvas
- 9.17 Exploiting Alternative Tools
- + Custom Exploitation
- Part IV
-
+
Backdoors
- 11.1 Choosing a Backdoor
- 11.2 VNC
- + 11.3 Creating and Packaging a VNC Backdoor
- + 11.4 Connecting to and Removing the VNC Backdoor
- 11.5 Back Orifice 2000
- + 11.6 Configuring a BO2k Server
- 11.7 Configuring a BO2k Client
- 11.8 Adding New Servers to the BO2k Workspace
- 11.9 Using the BO2k Backdoor
-
+
11.10 BO2k Powertools
- 11.11 Encryption for BO2k Communications
- 11.12 Concealing the BO2k Protocol
- 11.13 Removing BO2k
- + 11.14 A Few Unix Backdoors
-
+
Rootkits
- Part V
-
+
Proactive Defense: Firewalls
- + Host Hardening
-
+
Securing Communications
- + 15.1 The SSH-2 Protocol
- + 15.2 SSH Configuration
- 15.3 SSH Authentication
- + 15.4 SSH Shortcomings
- + 15.5 SSH Troubleshooting
- + 15.6 Remote File Access with SSH
- + 15.7 SSH Advanced Use
- + 15.8 Using SSH Under Windows
- 15.9 File and Email Signing and Encryption
- + 15.10 GPG
- + 15.11 Create Your GPG Keys
- + 15.12 Encryption and Signature with GPG
- 15.13 PGP Versus GPG Compatibility
- + 15.14 Encryption and Signature with S/MIME
- + 15.15 Stunnel
- 15.16 Disk Encryption
- 15.17 Windows Filesystem Encryption with PGP Disk
- + 15.18 Linux Filesystem Encryption with LUKS
- 15.19 Conclusion
-
+
Email Security and Anti-Spam
- + 16.1 Norton Antivirus
- 16.2 The ClamAV Project
- + 16.3 ClamWin
- + 16.4 Freshclam
- 16.5 Clamscan
- + 16.6 clamd and clamdscan
- + 16.7 ClamAV Virus Signatures
- + 16.8 Procmail
- + 16.9 Basic Procmail Rules
- + 16.10 Advanced Procmail Rules
- 16.11 ClamAV with Procmail
- 16.12 Unsolicited Email
- + 16.13 Spam Filtering with Bayesian Filters
- + 16.14 SpamAssassin
- + 16.15 SpamAssassin Rules
- + 16.16 Plug-ins for SpamAssassin
- + 16.17 SpamAssassin with Procmail
- + 16.18 Anti-Phishing Tools
- 16.19 Conclusion
-
+
Device Security Testing
- Part VI
-
+
Network Capture
-
+
Network Monitoring
-
+
Host Monitoring
- 20.1 Using File Integrity Checkers
- 20.2 File Integrity Hashing
- 20.3 The Do-It-Yourself Way with rpmverify
- + 20.4 Comparing File Integrity Checkers
- + 20.5 Prepping the Environment for Samhain and Tripwire
- + 20.6 Database Initialization with Samhain and Tripwire
- + 20.7 Securing the Baseline Storage with Samhain and Tripwire
- + 20.8 Running Filesystem Checks with Samhain and Tripwire
- + 20.9 Managing File Changes and Updating Storage Database with Samhain and Tripwire
- + 20.10 Recognizing Malicious Activity with Samhain and Tripwire
- 20.11 Log Monitoring with Logwatch
- 20.12 Improving Logwatch’s Filters
- + 20.13 Host Monitoring in Large Environments with Prelude-IDS
- 20.14 Conclusion
- Part VII
- + Forensics
-
+
Application Fuzzing
- 22.1 Which Fuzzer to Use
- + 22.2 Different Types of Fuzzers for Different Tasks
- 22.3 Writing a Fuzzer with Spike
- + 22.4 The Spike API
- + 22.5 File-Fuzzing Apps
- 22.6 Fuzzing Web Applications
- 22.7 Configuring WebProxy
- 22.8 Automatic Fuzzing with WebInspect
- 22.9 Next-Generation Fuzzing
- 22.10 Fuzzing or Not Fuzzing
-
+
Binary Reverse Engineering
- Index
What if you could sit down with some of the most talented security engineers in the world and ask any network security question you wanted? Security Power Tools lets you do exactly that! Members of Juniper Networks' Security Engineering team and a few guest experts reveal how to use, tweak, and push the most popular network security applications, utilities, and tools available using Windows, Linux, Mac OS X, and Unix platforms.
Designed to be browsed, Security Power Tools offers you multiple approaches to network security via 23 cross-referenced chapters that review the best security tools on the planet for both black hat techniques and white hat defense tactics. It's a must-have reference for network administrators, engineers and consultants with tips, tricks, and how-to advice for an assortment of freeware and commercial tools, ranging from intermediate level command-line operations to advanced programming of self-hiding exploits.
Security Power Tools details best practices for:
Reconnaissance -- including tools for network scanning such as nmap; vulnerability scanning tools for Windows and Linux; LAN reconnaissance; tools to help with wireless reconnaissance; and custom packet generation
Penetration -- such as the Metasploit framework for automated penetration of remote computers; tools to find wireless networks; exploitation framework applications; and tricks and tools to manipulate shellcodes
Control -- including the configuration of several tools for use as backdoors; and a review of known rootkits for Windows and Linux
Defense -- including host-based firewalls; host hardening for Windows and Linux networks; communication security with ssh; email security and anti- malware; and device security testing
Monitoring -- such as tools to capture, and analyze packets; network monitoring with Honeyd and snort; and host monitoring of production servers for file changes
Discovery -- including The Forensic Toolkit, SysInternals and other popular forensic tools; application fuzzer and fuzzing techniques; and the art of binary reverse engineering using tools like Interactive Disassembler and Ollydbg
A practical and timely network security ethics chapter written by a Stanford University professor of law completes the suite of topics and makes this book a goldmine of security information. Save yourself a ton of headaches and be prepared for any network security dilemma with Security Power Tools.
Test the closed alpha on paperc.com
Book Details
Authors
Bryan Burns, Dave Killion, Nicolas Beauchesne, Eric Moret, Julien Sobrier, Michael Lynn, Eric Markham, Chris Iezzoni, Philippe Biondi, Steve Manzuik, Paul Guersch, and Jennifer Stisa Granick
Categories
Computers > Security > General
Publishers
Publication year : 2007
License: All rights reserved ©
Times read: 1,315
