| OverviewReveals how attackers install malicious code and how they evade
detection Shows how you can defeat their schemes and keep your computers
and network safe! Details viruses, worms, backdoors, Trojan horses, RootKits, and
other threats Explains how to handle today's threats, with an eye on handling
the threats to come
"This is a truly outstanding book-enormous technical wealth and
beautifully written."
—Warwick Ford "Ed does it again, piercing the veil of mystery surrounding many
of the more technical aspects of computer security!"
—Harlan Carvey, CISSP "This book is entertaining and informative, while justifiably
scaring you. Luckily it also tells you how to protect yourself, but
makes you realize it's going to be a permanent spy-vs-spy
struggle."
—Radia Perlman, Distinguished Engineer, Sun Microsystems Keep control of your systems out of the hands of unknown
attackers Ignoring the threat of malware is one of the most reckless
things you can do in today's increasingly hostile computing
environment. Malware is malicious code planted on your computer,
and it can give the attacker a truly alarming degree of control
over your system, network, and data-all without your knowledge!
Written for computer pros and savvy home users by computer security
expert Edward Skoudis, Malware: Fighting Malicious Code covers
everything you need to know about malware, and how to defeat
it! This book devotes a full chapter to each type of
malware-viruses, worms, malicious code delivered through Web
browsers and e-mail clients, backdoors, Trojan horses, user-level
RootKits, and kernel-level manipulation. You'll learn about the
characteristics and methods of attack, evolutionary trends, and how
to defend against each type of attack. Real-world examples of
malware attacks help you translate thought into action, and a
special defender's toolbox chapter shows how to build your own
inexpensive code analysis lab to investigate new malware specimens
on your own. Throughout, Skoudis' clear, engaging style makes the
material approachable and enjoyable to learn. This book
includes: Solutions and examples that cover both UNIX® and
Windows® Practical, time-tested, real-world actions you can take to
secure your systems Instructions for building your own inexpensive malware code
analysis lab so you can get familiar with attack and defensive
tools harmlessly!
Malware: Fighting Malicious Code is intended for system
administrators, network personnel, security personnel, savvy home
computer users, and anyone else interested in keeping their systems
safe from attackers. Editorial ReviewsProduct DescriptionMalicious code is a set of instructions that runs on your computer and makes your system do something that you do not want it to do. For example, it can delete sensitive configuration files from your hard drive, rendering your computer completely inoperable; infect your computer and use it as a jumping-off point to spread to all of your buddies' computers; and steal files from your machine. Malicious code in the hands of a crafty attacker is indeed powerful. It's becoming even more of a problem because many of the very same factors fueling the evolution of the computer industry are making our systems even more vulnerable to malicious code. Specifically, malicious code writers benefit from the trends toward mixing static data and executable instructions, increasingly homogenous computing environments, unprecedented connectivity, an ever-larger clueless user base, and an unfriendly world. Skoudis addressed malicious code in just one chapter of his previous book. Here, a dozen chapters focus on one of the most interesting and rapidly developing areas of computer attacks.*Chapter 11, "Defender's Toolbox," rolls together the defensive strategies described in the book.As a bonus, Skoudis gives recipes for creating your own malicious code analysis laboratory using cheap hardware and software. |
Other Readers Also Read | Top Sellers in This Category | Browse Similar Topics | | | Top Level Categories:Sub-Categories: | | | | |
Reader Reviews From Amazon (Ranked by 'Helpfulness') Average Customer Rating: based on 16 reviews. Great resource, 2008-06-14 Reviewer rating: Nutshell review - This is a really good book, well written, easy to digest and follow. Good coverage and enough depth to provide a decent grounding from which further research into specific areas of interest can be launched. | still seems up-to-date although 3 years old., 2006-07-23 Reviewer rating: Great book explaining all the different types of malware out there. Skoudis helps to understand the technical details of each malware type without going into too much detail. The links provided, altough a few years old, are all still relevant. | Good book and worth a read, 2005-04-15 Reviewer rating: This is a good book. Ed has become a master in this filed and he put tons of good stuff in the book. | Many "big names" in infosec give this a 5 and they're right!, 2005-03-10 Reviewer rating: I am fortunate to have an autographed copy from when Mr. Skoudis taught a SANS class I attended; and have had to take a lot of time getting it read in the meantime. This is the book that I would recommend to anyone that would learn the workings of worm, virus, trojan horse and other malware - not how to write them, but how to understand and deal with them. The information on setting up a lab to examine these critters is a good start for those wanting to understand attacks - but like other reviewers have said, this book is not for one without a grounding in computer security. | Best available, 2005-01-28 Reviewer rating: This book provides the best review of malicious software that is presently available. If you need a comprehensive reference then this is the book for you. The author is a well-known and respected security analyst and this book provides solid information at a level suitable for the system administrator. Unlike so many books of this type, it is not a camouflaged endorsement of some vendor's products or a simplistic and alarmist text.
Topics covered include:
- viruses, with a brief history and description of the various types and their mechanisms;
- worms, again with a brief history and description of the various types and their mechanisms;
- mobile code, including browser scripts, ActiveX controls, Java applets and mobile code as it occurs in email clients and distributed applications. Given the increasing amount of mobile code, this is particularly valuable;
- backdoors, particularly Netcat and VNC but covering some others as well;
- trojans inlcuding wrappers, source poisoning and browser co-option;
- rootkits for Unix andWindows;
- kernel-mode rotkits for linux and Windows;
- possible modes, including BIOS and microcode attacks.
"Encyclopediac" is the only description I can give, but be warned that it's not for the general reader, or for newbies. |
Some information above was provided using data from Amazon.com. View at Amazon > |
| |
|
|
