There's also live online events, interactive content, certification prep materials, and more. Hacking is the art of creative problem solving, whether that means finding an unconventional solution to a difficult problem or exploiting holes in sloppy programming. Many people call themselves hackers, but few have the strong technical foundation needed to really push the envelope.
Rather than merely showing how to run existing exploits, author Jon Erickson explains how arcane hacking techniques actually work. To share the art and science of hacking in a way that is accessible to everyone, Hacking: The Art of Exploitation, 2nd Edition introduces the fundamentals of C programming from a hacker's perspective. The included LiveCD provides a complete Linux programming and debugging environment-all without modifying your current operating system.
Use it to follow along with the book's examples as you fill gaps in your knowledge and explore hacking techniques on your own. Get your hands dirty debugging code, overflowing buffers, hijacking network communications, bypassing protections, exploiting cryptographic weaknesses, and perhaps even inventing new exploits.
This book will teach you how to:. Inspect processor registers and system memory with a debugger to gain a real understanding of what is happening. Gain access to a remote server using port-binding or connect-back shellcode, and alter a server's logging behavior to hide your presence. Crack encrypted wireless traffic using the FMS attack, and speed up brute-force attacks using a password probability matrix.
Hackers are always pushing the boundaries, investigating the unknown, and evolving their art. Even if you don't already know how to program, Hacking: The Art of Exploitation, 2nd Edition will give you a complete picture of programming, machine architecture, network communications, and existing hacking techniques.
Combine this knowledge with the included Linux environment, and all you need is your own creativity. Skip to main content. Start your free trial. Book description Hacking is the art of creative problem solving, whether that means finding an unconventional solution to a difficult problem or exploiting holes in sloppy programming.
This book will teach you how to: Program computers using C, assembly language, and shell scripts Corrupt system memory to run arbitrary code using buffer overflows and format strings Inspect processor registers and system memory with a debugger to gain a real understanding of what is happening Outsmart common security measures like nonexecutable stacks and intrusion detection systems Gain access to a remote server using port-binding or connect-back shellcode, and alter a server's logging behavior to hide your presence Redirect network traffic, conceal open ports, and hijack TCP connections Crack encrypted wireless traffic using the FMS attack, and speed up brute-force attacks using a password probability matrix Hackers are always pushing the boundaries, investigating the unknown, and evolving their art.
Show and hide more. Table of contents Product information. What Is Programming? Pseudo-code 0x Control Structures 0x If-Then-Else 0x For Loops 0x More Fundamental Programming Concepts 0x Variables 0x Arithmetic Operators 0x Comparison Operators 0x Functions 0x Getting Your Hands Dirty 0x Getting Your Hands Dirty firstprog. The Bigger Picture 0x The x86 Processor 0x Back to Basics 0x Pointers pointer. Typecasting typecasting. Command-Line Arguments commandline. Variable Scoping scope. Memory Segmentation 0x Building on Basics 0x File Access simplenote.
File Permissions 0x Generalized Exploit Techniques 0x Buffer Overflows 0x The computer programming portion of Hacking takes up over half of the book. This section goes into the development, design, construction, and testing of exploit code, and thus involves some basic assembly programming. The demonstrated attacks range from simple buffer overflows on the stack to complex techniques involving overwriting the Global Offset Table.
While Erickson discusses countermeasures such as a non-executable stack and how to evade them with return-to-libc attacks, he does not dive into deeper matters without known guaranteed exploits such as address space layout randomization.
The networking segment of Hacking explains the basics of the OSI model and basic networking concepts, including packet sniffing, connection hijacking, denial of service and port scanning. The cryptology section of Hacking covers basic information theory, in addition to symmetric and asymmetric encryption. Besides the basics, including man-in-the-middle attacks, dictionary attacks, and the use of John the Ripper; Hacking discusses quantum key distribution, Lov Grover's Quantum Search Algorithm, and Peter Shor's Quantum Factoring Algorithm for breaking RSA encryption using a very large quantum computer.
The introduction of the book states that hacking should only be done within the confines of the law, and only for productive reasons. In the programming chapter of this book, different types of programs are described and shown via examples. The chapter covers control structures and other basic aspects of programming. The live CD provides an environment so that the reader can not only follow along with the examples in the book but do some programming themselves.
A bootable CD is included with the book which provides a Linux-based programming and debugging environment for the users. The content of Exploiting moves between programming, networking, and cryptography. The book does not use any notable measure of real-world examples; discussions rarely bring up specific worms and exploits.
The computer programming portion of Hacking takes up over half of the book. This section goes into the development, design, construction, and testing of exploit code, and thus involves some basic assembly programming.
The demonstrated attacks range from simple buffer overflows on the stack to complex techniques involving overwriting the global offset table. While Erickson discusses countermeasures such as a non-executable stack and how to evade them with return-to-libc attacks, he does not dive into deeper matters without known guaranteed exploits such as address space layout randomization.
The networking segment of Hacking explains the basics of the OSI model and basic networking concepts, including packet sniffing, connection hijacking, denial of service and port scanning. The cryptology section of Hacking covers basic information theory, in addition to symmetric and asymmetricencryption.
0コメント