.png)
Shopping Cart
Your shopping cart is empty!
Penetration testing-in which professional, "white hat" hackers attempt to break through an organization's security defenses-has become a key defense weapon in today's information systems security arsenal. Through penetration testing, I.T. and security professionals can take action to prevent true "black hat" hackers from compromising systems and exploiting proprietary information.
Hack I.T. introduces penetration testing and its vital role in an overall network security plan. You will learn about the roles and responsibilities of a penetration testing professional, the motivation and strategies of the underground hacking community, and potential system vulnerabilities, along with corresponding avenues of attack. Most importantly, the book provides a framework for performing penetration testing and offers step-by-step descriptions of each stage in the process. The latest information on the necessary hardware for performing penetration testing, as well as an extensive reference on the available security tools, is included.
Comprehensive in scope Hack I.T. provides in one convenient resource the background, strategies, techniques, and tools you need to test and protect your system-before the real hackers attack.
T.J. Klevinsky is part of Ernst & Young's Security and Technology Solutions practice, where he coordinates attack and penetration exercises for Fortune 500 corporations worldwide. He is also an instructor for the Ernst & Young's Extreme Hacking course. Additionally, T.J. is an instructor with SANS, where he teaches the course Contemporary Hacking Tools and Penetration Testing, a survey of recent security related software tools.
Scott Laliberte is part of Ernst & Young's Security and Technology Solutions practice. He has extensive expertise in the areas of information systems security, network operations, and electronic commerce. He has led numerous penetration testing engagements for Fortune 500 companies and designs e-commerce architectures and security controls. He is also an instructor for the Ernst & Young's Extreme Hacking course.
Ajay Gupta is part of Ernst & Young's Security and Technology Solutions practice, where he performs security reviews- including penetration testing-for Ernst & Young clients glob- ally. As an instructor for the company's Extreme Hacking course, he develops and reviews numerous new security tools. In addition, he is one of Ernst & Young's Intrusion Detection System experts.
Specific topics covered in this book include:
• Hacking myths
• Potential drawbacks of penetration testing
• Announced versus unannounced testing
• Application-level holes and defenses
• Penetration through the Internet, including zone transfer, sniffing, and port scanning
•War dialing
• Enumerating NT systems to expose security holes
• Social engineering methods
• Unix-specific vulnerabilities, such as RPC and buffer overflow attacks
• The Windows NT Resource kit
• Port scanners and discovery tools
• Sniffers and password crackers
• Web testing tools
• Remote control tools
• Firewalls and intrusion detection systems
• Numerous DoS attacks and tools
Hack I.T. introduces penetration testing and its vital role in an overall network security plan. You will learn about the roles and responsibilities of a penetration testing professional, the motivation and strategies of the underground hacking community, and potential system vulnerabilities, along with corresponding avenues of attack. Most importantly, the book provides a framework for performing penetration testing and offers step-by-step descriptions of each stage in the process. The latest information on the necessary hardware for performing penetration testing, as well as an extensive reference on the available security tools, is included.
Comprehensive in scope Hack I.T. provides in one convenient resource the background, strategies, techniques, and tools you need to test and protect your system-before the real hackers attack.
T.J. Klevinsky is part of Ernst & Young's Security and Technology Solutions practice, where he coordinates attack and penetration exercises for Fortune 500 corporations worldwide. He is also an instructor for the Ernst & Young's Extreme Hacking course. Additionally, T.J. is an instructor with SANS, where he teaches the course Contemporary Hacking Tools and Penetration Testing, a survey of recent security related software tools.
Scott Laliberte is part of Ernst & Young's Security and Technology Solutions practice. He has extensive expertise in the areas of information systems security, network operations, and electronic commerce. He has led numerous penetration testing engagements for Fortune 500 companies and designs e-commerce architectures and security controls. He is also an instructor for the Ernst & Young's Extreme Hacking course.
Ajay Gupta is part of Ernst & Young's Security and Technology Solutions practice, where he performs security reviews- including penetration testing-for Ernst & Young clients glob- ally. As an instructor for the company's Extreme Hacking course, he develops and reviews numerous new security tools. In addition, he is one of Ernst & Young's Intrusion Detection System experts.
Specific topics covered in this book include:
• Hacking myths
• Potential drawbacks of penetration testing
• Announced versus unannounced testing
• Application-level holes and defenses
• Penetration through the Internet, including zone transfer, sniffing, and port scanning
•War dialing
• Enumerating NT systems to expose security holes
• Social engineering methods
• Unix-specific vulnerabilities, such as RPC and buffer overflow attacks
• The Windows NT Resource kit
• Port scanners and discovery tools
• Sniffers and password crackers
• Web testing tools
• Remote control tools
• Firewalls and intrusion detection systems
• Numerous DoS attacks and tools