I.M.O.G.
03-06-05, 11:12 PM
I spent some time at borders this weekend and investigated their computer security section a bit, and here are my brief thoughts on what I gathered for those interested...
Steal This Computer Book by Wang (http://www.nostarch.com/frameset.php?startat=stcb3)
IMOG's Conclusion: http://www.ocforums.com/oc_images/images/icons/icon13.gif
Primer: Covers many topics about the culture and methods used by hackers.
Pros: Many links for further personal research on topics covered.
Cons: This was the first book I paged through, and I found it mildly interesting... If I were on the toilet with limited literature options, after eating bad chinese the night before, I could find some entertaining entries to get me by in my time of need. Light reading, wouldn't consider it actually technical, written by a technical person/comic who, very occasionally, manages to be comedic in this text.
Conclusion Details: An alright coffee table/****house book, but not anything I would consider reading front to back. It didn't inspire me to check the price on the back, but its available online for between $12-$20 at many places. I wouldn't bother getting it, but it serves as a fine gateway to further online research for many of the topics it covers.
Google Hacking for Penetration Testers by Long (http://www.syngress.com/catalog/?pid=3150)
IMOG's Conclusion: :thup:
Primer: What is Google Hacking? (http://news.com.com/2100-7349_3-5289486.html)
Pros: Entertaining somewhat technical book. Reading goes fairly quick, very well organized for use as a reference manual. Useful for anyone who's site is crawled by Google and is interested in the security of their website. The author is a leading professional at the forefront of both whitehat and blackhat activity.
Cons: Questionable actions can follow from reading this text. Covers many methods which can be, and everyday ARE, misused.
Conclusion Details: I spent a solid enjoyable hour glancing through the topics of this book. This paperback is thick - lift with the legs, not with the back. It covers all aspects of anything interesting about the utility, and threat, which can be raised from Google. This book would interest both the white or black hat out there, and should probably be owned by both if they have any interest in online security. Definetly recommended, entertaining, informative. Available from Borders for $45, and online for around $30, and used for a little more than $25.
Honeypots - Tracking Hackers by Spitzner (http://www.aw-bc.com/catalog/academic/product/0,,0321108957,00%2ben-USS_01DBC.html)
IMOG's Conclusion: :thup:
Primer: What is a Honeypot? (http://www.tracking-hackers.com/misc/faq.html)
Pros: Highly technical. Covers planning, software options, deployment, and legal considerations. Written by a security professional from Sun Microsystems, with assistance from legal advisors for legal considerations.
Cons: Involved. If you aren't interested in security and the role of honeypots specifically, probably more information here than you are really interested in. A solid understanding of everything contained would require technical know-how and training to be successful in following through in real life.
Conclusion Details: Out of my 4 hours, I probably spent a good 2 and a half reading a few selected excerpts in this book. This is also a weighty book, though paperback. I found this book thoroughly interesting - it details the most basic aspects of what honeypots are all about, and takes you all the way to making decisions in implementation in a business environment. I would expect that after reading this book, any support person reasonably comfortable with their technical skills would have the ability to deploy a low-interaction honeypot as part of their business's security suite. Very real world applicable, and very friendly to the n00b despite offering more than enough for the otherwise skilled technical individual looking to add to the security of their site. Made me want to setup a honeypot on my home network - and I will be looking into it further for sure. Also available for $45 from Borders, $30 from Amazon, and even as little as $10 used (likely due to limited interest group in this topic - quality of information contained is Excellent).
Steal This Computer Book by Wang (http://www.nostarch.com/frameset.php?startat=stcb3)
IMOG's Conclusion: http://www.ocforums.com/oc_images/images/icons/icon13.gif
Primer: Covers many topics about the culture and methods used by hackers.
Pros: Many links for further personal research on topics covered.
Cons: This was the first book I paged through, and I found it mildly interesting... If I were on the toilet with limited literature options, after eating bad chinese the night before, I could find some entertaining entries to get me by in my time of need. Light reading, wouldn't consider it actually technical, written by a technical person/comic who, very occasionally, manages to be comedic in this text.
Conclusion Details: An alright coffee table/****house book, but not anything I would consider reading front to back. It didn't inspire me to check the price on the back, but its available online for between $12-$20 at many places. I wouldn't bother getting it, but it serves as a fine gateway to further online research for many of the topics it covers.
Google Hacking for Penetration Testers by Long (http://www.syngress.com/catalog/?pid=3150)
IMOG's Conclusion: :thup:
Primer: What is Google Hacking? (http://news.com.com/2100-7349_3-5289486.html)
Pros: Entertaining somewhat technical book. Reading goes fairly quick, very well organized for use as a reference manual. Useful for anyone who's site is crawled by Google and is interested in the security of their website. The author is a leading professional at the forefront of both whitehat and blackhat activity.
Cons: Questionable actions can follow from reading this text. Covers many methods which can be, and everyday ARE, misused.
Conclusion Details: I spent a solid enjoyable hour glancing through the topics of this book. This paperback is thick - lift with the legs, not with the back. It covers all aspects of anything interesting about the utility, and threat, which can be raised from Google. This book would interest both the white or black hat out there, and should probably be owned by both if they have any interest in online security. Definetly recommended, entertaining, informative. Available from Borders for $45, and online for around $30, and used for a little more than $25.
Honeypots - Tracking Hackers by Spitzner (http://www.aw-bc.com/catalog/academic/product/0,,0321108957,00%2ben-USS_01DBC.html)
IMOG's Conclusion: :thup:
Primer: What is a Honeypot? (http://www.tracking-hackers.com/misc/faq.html)
Pros: Highly technical. Covers planning, software options, deployment, and legal considerations. Written by a security professional from Sun Microsystems, with assistance from legal advisors for legal considerations.
Cons: Involved. If you aren't interested in security and the role of honeypots specifically, probably more information here than you are really interested in. A solid understanding of everything contained would require technical know-how and training to be successful in following through in real life.
Conclusion Details: Out of my 4 hours, I probably spent a good 2 and a half reading a few selected excerpts in this book. This is also a weighty book, though paperback. I found this book thoroughly interesting - it details the most basic aspects of what honeypots are all about, and takes you all the way to making decisions in implementation in a business environment. I would expect that after reading this book, any support person reasonably comfortable with their technical skills would have the ability to deploy a low-interaction honeypot as part of their business's security suite. Very real world applicable, and very friendly to the n00b despite offering more than enough for the otherwise skilled technical individual looking to add to the security of their site. Made me want to setup a honeypot on my home network - and I will be looking into it further for sure. Also available for $45 from Borders, $30 from Amazon, and even as little as $10 used (likely due to limited interest group in this topic - quality of information contained is Excellent).