Hacking Exposed Malware & Rootkits: Security Secrets and Solutions, Second Edition

Hacking Exposed Malware & Rootkits: Security Secrets and Solutions, Second Edition

Author: Christopher C. Elisan

Publisher: McGraw Hill Professional

Published: 2016-12-16

Total Pages: 383

ISBN-13: 0071825754

DOWNLOAD EBOOK

Arm yourself for the escalating war against malware and rootkits Thwart debilitating cyber-attacks and dramatically improve your organization’s security posture using the proven defense strategies in this thoroughly updated guide. Hacking ExposedTM Malware and Rootkits: Security Secrets & Solutions, Second Edition fully explains the hacker’s latest methods alongside ready-to-deploy countermeasures. Discover how to block pop-up and phishing exploits, terminate embedded code, and identify and eliminate rootkits. You will get up-to-date coverage of intrusion detection, firewall, honeynet, antivirus, and anti-rootkit technology. • Learn how malware infects, survives, and propagates across an enterprise • See how hackers develop malicious code and target vulnerable systems • Detect, neutralize, and remove user-mode and kernel-mode rootkits • Use hypervisors and honeypots to uncover and kill virtual rootkits • Defend against keylogging, redirect, click fraud, and identity theft • Block spear phishing, client-side, and embedded-code exploits • Effectively deploy the latest antivirus, pop-up blocker, and firewall software • Identify and stop malicious processes using IPS solutions


Designing BSD Rootkits

Designing BSD Rootkits

Author: Joseph Kong

Publisher: No Starch Press

Published: 2007-04-01

Total Pages: 164

ISBN-13: 1593271581

DOWNLOAD EBOOK

Though rootkits have a fairly negative image, they can be used for both good and evil. Designing BSD Rootkits arms you with the knowledge you need to write offensive rootkits, to defend against malicious ones, and to explore the FreeBSD kernel and operating system in the process. Organized as a tutorial, Designing BSD Rootkits will teach you the fundamentals of programming and developing rootkits under the FreeBSD operating system. Author Joseph Kong's goal is to make you smarter, not to teach you how to write exploits or launch attacks. You'll learn how to maintain root access long after gaining access to a computer and how to hack FreeBSD. Kongs liberal use of examples assumes no prior kernel-hacking experience but doesn't water down the information. All code is thoroughly described and analyzed, and each chapter contains at least one real-world application. Included: –The fundamentals of FreeBSD kernel module programming –Using call hooking to subvert the FreeBSD kernel –Directly manipulating the objects the kernel depends upon for its internal record-keeping –Patching kernel code resident in main memory; in other words, altering the kernel's logic while it’s still running –How to defend against the attacks described Hack the FreeBSD kernel for yourself!


Malware, Rootkits & Botnets A Beginner's Guide

Malware, Rootkits & Botnets A Beginner's Guide

Author: Christopher C. Elisan

Publisher: McGraw Hill Professional

Published: 2012-09-05

Total Pages: 385

ISBN-13: 0071792058

DOWNLOAD EBOOK

Security Smarts for the Self-Guided IT Professional Learn how to improve the security posture of your organization and defend against some of the most pervasive network attacks. Malware, Rootkits & Botnets: A Beginner's Guide explains the nature, sophistication, and danger of these risks and offers best practices for thwarting them. After reviewing the current threat landscape, the book describes the entire threat lifecycle, explaining how cybercriminals create, deploy, and manage the malware, rootkits, and botnets under their control. You'll learn proven techniques for identifying and mitigating these malicious attacks. Templates, checklists, and examples give you the hands-on help you need to get started protecting your network right away. Malware, Rootkits & Botnets: A Beginner's Guide features: Lingo--Common security terms defined so that you're in the know on the job IMHO--Frank and relevant opinions based on the author's years of industry experience Budget Note--Tips for getting security technologies and processes into your organization's budget In Actual Practice--Exceptions to the rules of security explained in real-world contexts Your Plan--Customizable checklists you can use on the job now Into Action--Tips on how, why, and when to apply new skills and techniques at work


Rootkits and Bootkits

Rootkits and Bootkits

Author: Alex Matrosov

Publisher: No Starch Press

Published: 2019-05-07

Total Pages: 449

ISBN-13: 1593278837

DOWNLOAD EBOOK

Rootkits and Bootkits will teach you how to understand and counter sophisticated, advanced threats buried deep in a machine’s boot process or UEFI firmware. With the aid of numerous case studies and professional research from three of the world’s leading security experts, you’ll trace malware development over time from rootkits like TDL3 to present-day UEFI implants and examine how they infect a system, persist through reboot, and evade security software. As you inspect and dissect real malware, you’ll learn: • How Windows boots—including 32-bit, 64-bit, and UEFI mode—and where to find vulnerabilities • The details of boot process security mechanisms like Secure Boot, including an overview of Virtual Secure Mode (VSM) and Device Guard • Reverse engineering and forensic techniques for analyzing real malware, including bootkits like Rovnix/Carberp, Gapz, TDL4, and the infamous rootkits TDL3 and Festi • How to perform static and dynamic analysis using emulation and tools like Bochs and IDA Pro • How to better understand the delivery stage of threats against BIOS and UEFI firmware in order to create detection capabilities • How to use virtualization tools like VMware Workstation to reverse engineer bootkits and the Intel Chipsec tool to dig into forensic analysis Cybercrime syndicates and malicious actors will continue to write ever more persistent and covert attacks, but the game is not lost. Explore the cutting edge of malware analysis with Rootkits and Bootkits. Covers boot processes for Windows 32-bit and 64-bit operating systems.


Hacking Exposed Malware & Rootkits: Security Secrets and Solutions, Second Edition

Hacking Exposed Malware & Rootkits: Security Secrets and Solutions, Second Edition

Author: Aaron LeMasters

Publisher: McGraw-Hill Education

Published: 2016-06-22

Total Pages: 400

ISBN-13: 9780071823074

DOWNLOAD EBOOK

The latest exclusive Hacking Exposed strategies for defending against the world’s number one attack type: malware Fully updated to cover the most current tools, techniques, and exploits, Hacking Exposed Malware & Rootkits, Second Edition walks you through the process of defending against the consistent onslaught of malware and rootkit assaults using failsafe methods. The second edition includes all-new real-world case studies and cutting-edge examples to reveal how hackers use readily available tools to infiltrate and hijack networks. The book takes a step-by-step approach to explaining countermeasures to provide the best training in the detection and elimination of malicious, embedded code. The latest intrusion detection, baits, antivirus, anti-rootkit, and anti-spyware technologies are all covered in detail. Counter today’s most virulent network attack types Find out how malware infects, survives, and propagates across an enterprise Detect, kill, and remove virtual, user-mode, and kernel-mode rootkits Learn how hackers use archivers, encryptors, and packers to obfuscate code Defend against keylogging, redirect, click fraud, and identity theft threats


Rootkits, Spyware/Adware, Keyloggers and Backdoors: Detection and Neutralization

Rootkits, Spyware/Adware, Keyloggers and Backdoors: Detection and Neutralization

Author: Oleg Zaytsev

Publisher: БХВ-Петербург

Published: 2006

Total Pages: 297

ISBN-13: 1931769591

DOWNLOAD EBOOK

Covering the wide range of technologies implemented by contemporary malware programs such as rootkits, keyloggers, spyware, adware, back doors, and network and mail worms, this practical guide for system administrators and experienced users covers approaches to computer investigation and how to locate and destroy malicious programs without using antiviral software. Examples such as protocol fragments, operating principles of contemporary malicious programs, and an overview of specialized software for finding and neutralizing malware are presented, and the accompanying CD-ROM includes programs for system analysis and an antiviral utility intended for investigating the system and detecting rootkits and keyloggers.


Hacking Exposed Wireless

Hacking Exposed Wireless

Author: Johnny Cache

Publisher: McGraw Hill Professional

Published: 2007-04-10

Total Pages: 418

ISBN-13: 0071509690

DOWNLOAD EBOOK

Secure Your Wireless Networks the Hacking Exposed Way Defend against the latest pervasive and devastating wireless attacks using the tactical security information contained in this comprehensive volume. Hacking Exposed Wireless reveals how hackers zero in on susceptible networks and peripherals, gain access, and execute debilitating attacks. Find out how to plug security holes in Wi-Fi/802.11 and Bluetooth systems and devices. You'll also learn how to launch wireless exploits from Metasploit, employ bulletproof authentication and encryption, and sidestep insecure wireless hotspots. The book includes vital details on new, previously unpublished attacks alongside real-world countermeasures. Understand the concepts behind RF electronics, Wi-Fi/802.11, and Bluetooth Find out how hackers use NetStumbler, WiSPY, Kismet, KisMAC, and AiroPeek to target vulnerable wireless networks Defend against WEP key brute-force, aircrack, and traffic injection hacks Crack WEP at new speeds using Field Programmable Gate Arrays or your spare PS3 CPU cycles Prevent rogue AP and certificate authentication attacks Perform packet injection from Linux Launch DoS attacks using device driver-independent tools Exploit wireless device drivers using the Metasploit 3.0 Framework Identify and avoid malicious hotspots Deploy WPA/802.11i authentication and encryption using PEAP, FreeRADIUS, and WPA pre-shared keys