Access "Secure Reads: Gray Hat Hacking"
This article is part of the January 2005 issue of How security pros can benefit from information sharing
Gray Hat Hacking: The Ethical Hacker's Handbook By Shon Harris, Allen Harper, Chris Eagle, Jonathan Ness and Michael Lester 456 pages, $49.99 McGraw Hill/Osborne Media @exb Gray Hat Hacking: The Ethical Hacker's Handbook @exe Any authors willing to throw their hats in the ring with hands-on technical security/hacking manuals--such as Security Warrior, Exploiting Softwar and Hacking Exposed--must differentiate themselves from the pack. Gray Hat Hacking: The Ethical Hacker's Handbook is a proficient work, but doesn't particularly stand out among security texts. Gray Hat offers a smorgasbord of topics geared toward moderate- and advanced-level practitioners, but fails to go into much depth in any one area. The authors touch on some deep technical issues, such as automated penetration testing and shellcode exploit construction, but the information is largely recycled from other sources and doesn't offer much insight. The authors' great command of the material brings the book some redemption, since they discuss a few refreshingly different topics--such as ... Access >>>
Premium Content for Free.
You're just plugging holes if you don't have the right processes and policies.
The Sky's the Limit
What security technology do you need that you can't get today? Here's your wish list.
Content Filtering: Websense Enterprise 5.5
Websense's Enterprise 5.5
Authentication: RSA SecurID 6.0 for Windows
RSA Security's SecurID 6.0 for Windows
Seattle CISOs Ernie Hayden and Kirk Bailey are pioneering a new level of trust and cooperation to secure their enterprises.
Hot Pick: F5 Networks' FirePass 4100 Series
F5 Networks' FirePass 4100 Series
- Vulnerability Mismanagement
Antispyware: Webroot Software's Spy Sweeper Enterprise
Webroot Software's Spy Sweeper Enterprise
Secure Reads: Gray Hat Hacking
Gray Hat Hacking: The Ethical Hacker's Handbook
Recent Releases: Security product briefs, January 2005
Learn about the information security products released in January 2005.
by Steven Weil, Contributor
Avinti's iSolation Server 1.1
The Myths of Security
The ancient Greeks spun myths to explain the unexplainable. Modern enterprises use commonly held myths as a foundation for security.
Key to the World
SAML's portable trust makes federated identity work.
- Antispyware: Webroot Software's Spy Sweeper Enterprise
Logoff: Government tosses pennies toward information security
Death by a Thousand Cuts
Editor's Desk: Remembering the dearly departed
Built to Sell
Layer 8: The security governance myth
Perspectives: Walk in management's shoes
One security manager describes his experience with a management program that helped him understand how to align security with business objectives.
- Logoff: Government tosses pennies toward information security
More Premium Content Accessible For Free
Deploying data protection technologies properly requires a lot of time and patience. While most firms can get started by using preconfigured policies...
The bring your own device (BYOD) movement, which has flooded the enterprise with employee-owned smartphones, tablets, phablets and purse-sized ...
For so long penetration testing meant hiring an expert to use skill and savvy to try to infiltrate the company system. But, as with most ...