Authors: Christopher Burgess. Richard Power.
Paperback, 300 pages
Publisher: Syngress
Publication Date: 2008-02-08


Reviews :

    The threats of economic espionage and intellectual property (IP) theft are global, stealthy, insidious, and increasingly common. According to the U.S. Commerce Department, IP theft is estimated to top $250 billion annually and also costs the United States approximately 750,000 jobs. The International Chamber of Commerce puts the global fiscal loss at more than $600 billion a year.

Secrets Stolen, Fortunes Lost offers both a fascinating journey into the underside of the Information Age, geopolitics, and global economy, shedding new light on corporate hacking, industrial espionage, counterfeiting and piracy, organized crime and related problems, and a comprehensive guide to developing a world-class defense against these threats. You will learn what you need to know about this dynamic global phenomenon (how it happens, what it costs, how to build an effective program to mitigate risk and how corporate culture determines your success), as well as how to deliver the message to the boardroom and the workforce as a whole. This book serves as an invaluable reservoir of ideas and energy to draw on as you develop a winning security strategy to overcome this formidable challenge.

. It's Not "Someone Else's" Problem: Your Enterprise is at Risk
Identify the dangers associated with intellectual property theft and economic espionage
. The Threat Comes from Many Sources
Describes the types of attackers, threat vectors, and modes of attack
. The Threat is Real
Explore case studies of real-world incidents in stark relief
. How to Defend Your Enterprise
Identify all aspects of a comprehensive program to tackle such threats and risks
. How to Deliver the Message: Awareness and Education
Adaptable content (awareness and education materials, policy language, briefing material, presentations, and assessment tools) that you can incorporate into your security program now...

Authors: Justin Seitz.
Paperback, 304 pages
Publisher: No Starch Press
Publication Date: 2009-04-28


Reviews :

   

Python is the high-level language of choice for hacking, vulnerability discovery, and security research. Gray Hat Python, the first Python book written for advanced security analysts, explains the intricacies of using Python to assist in a range of security analysis tasks. Readers learn how to design and program their own debuggers, create powerful fuzzers, utilize open source libraries to automate tedious tasks, and interface with commercial and non-commercial security tools. Gray Hat Python covers everything from the nuts and bolts of how to use the language for basic code and DLL injection to using Python to analyze binaries and disassemble software. It also discusses a variety of open source Python tools (such as PyDbg, PaiMei, PyEmu, Sulley, and Immunity Debugger) and how to extend them. Fundamentally a security book, Gray Hat Python reveals just how superior the Python language is when it comes to hacking, reverse engineering, malware analysis and software testing....

Authors: Michael Newton.
Paperback, 416 pages
Publisher: Checkmark Books
Publication Date: 2003-11


Reviews :

    The history of crime in America has proven that criminals are often the first to seize upon opportunities presented by new technologies and use them for nefarious purposes. It has also shown that law enforcement groups are quick to respond and use high-tech tools to defend the public safety. This work is a comprehensive survey of how the underworld takes advantage of new tools and techniques and how authorities can fight back, prevent crime, and capture criminals. In more than 420 entries, it covers DNA and medical evidence to computer virus attacks, from blood spatter analysis to explosive detection devices....

Authors: William von Hagen.
Paperback, 568 pages
Publisher: Course Technology PTR
Publication Date: 2004-07-31
Edition: 2

Reviews :

    The second edition of the successful "Hacking the TiVo" (1592001114) provides the latest information for TiVo owners got get the most out of the TiVo. This book discusses how to hack the latest TiVo hardware, including the Sony 4000, Pioneer 57H, and Pioneer 810H (updated Series 2 TiVos running on a new version of the TiVo operating system). These updates require additional techniques in order to expand storage capacity and install utilities into their file systes. Not only appealing to TiVo owners who want to save money, this book also serves owners who want the security of backing up their TiVos themselves, and Linux users who want detailed information about the version of Linux used in TiVos. "Taboo" topics such as video extraction are also covered....

Authors: Paul Craig.
Paperback, 356 pages
Publisher: Syngress
Publication Date: 2005-09-01


Reviews :

    For every $2 worth of software purchased legally, $1 worth of software is pirated illegally. For the first time ever, the dark underground of how software is stolen and traded over the internet is revealed. The technical detail provided will open the eyes of software users and manufacturers worldwide! This book is a tell-it-like-it-is expos of how tens of billions of dollars worth of software is stolen every year.

Did you know that most of the software on your computer, and nearly every program you've heard of, can be obtained without charge? In less time than it would take you to drive down to your "friendly neighborhood computer store" and purchase a software program, you can download the exact same program from the internet for free! Obtaining something intended to be sold without paying is "controversial" to say the least. But whether you call if "free for the asking," "software piracy," or just out-and-out "stealing;" downloading, copying, and sharing software is being done by thousands of people everyday. This book explains the epidemic problem of software piracy in great detail for both software users and manufacturers.

...

Authors:
Hardcover, 223 pages
Publisher: Springer
Publication Date: 2008-04-07
Edition: 1

Reviews :

   

Insider Attack and Cyber Security: Beyond the Hacker defines the nature and scope of insider problems as viewed by the financial industry. This edited volume is based on the first workshop on Insider Attack and Cyber Security, IACS 2007. The workshop was a joint effort from the Information Security Departments of Columbia University and Dartmouth College.

This book sets an agenda for an ongoing research initiative to solve one of the most vexing problems encountered in security, and includes the following topics: critical IT infrastructure, insider threats, awareness and dealing with nefarious human activities in a manner that respects individual liberties and privacy policies of organizations while providing the best protection of critical resources and services. In some sense, the insider problem is the ultimate security problem. This volume concludes with technical and legal challenges facing researchers who study and propose solutions to mitigate insider attacks.

...

Authors: Ankit Fadia.
Paperback, 864 pages
Publisher: Course Technology PTR
Publication Date: 2005-09-13
Edition: 2

Reviews :

    Learn how to use good hacking to prevent your system from becoming the victim of attacks! "The Unofficial Guide to Ethical Hacking, Second Edition" defines the difference between hackers - those who crack a computer system for the sheer challenge of doing so - and crackers - an elusive class of computer criminals who break into systems, release viruses, and deface Web sites. Ethical hackers often help out system administrators by notifying them of loopholes in their systems before crackers can get to them and cause damage. More than just a guide to hacking, this book explores all aspects of computer security in a hands-on and easy-to-comprehend manner - a must-read for any computer user who wants to learn how a system is cracked and how you can better protect yourself. With helpful resources and clear, step-by-step instructions on various hacking techniques, this book features the most up-to-date and comprehensive information and methods, covering file encryption, firewalls, and viruses, as well as new topics such as instant messenger hacking, intellectual property thefts, identity attacks, and much more....

Authors: Michael Knetzger. Jeremy Muraski.
Paperback, 400 pages
Publisher: Prentice Hall
Publication Date: 2007-02-19
Edition: 1

Reviews :

    For courses in Criminal Justice, Computer Crime, Cyber Crime, and Computer Forensics. Written for first responders, this text was developed to address the need for an investigator's guide to high tech crime. Filled with real world examples, it is meant to be a hands-on training tool as well as a long-term reference manual. Chapters and materials are sequenced using a building block approach--one that ensures all students have the baseline knowledge needed to advance to the more complex topic areas. With an emphasis on demystifying the world of high tech crime, this book uses plain terms and real world analogies to make concepts accessible and meaningful to those on the front lines....

Authors: Eric S. Raymond.
Hardcover, 288 pages
Publisher: O'Reilly
Publication Date: 1999-10
Edition: 1

Reviews :

    "This is how we did it." --Linus Torvalds, creator of the Linux kernel

It all started with a series of odd statistics. The leading challenger to Microsoft's stranglehold on the computer industry is an operating system called Linux, the product of thousands of volunteer programmers who collaborate over the Internet. The software behind a majority of all the world's web sites doesn't come from a big company either, but from a loosely coordinated group of volunteer programmers called the Apache Group. The Internet itself, and much of its core software, was developed through a process of networked collaboration.

The key to these stunning successes is a movement that has come to be called open source, because it depends on the ability of programmers to freely share their program source code so that others can improve it. In 1997, Eric S. Raymond outlined the core principles of this movement in a manifesto called "The Cathedral and the Bazaar," which was published and freely redistributed over the Internet.

Mr. Raymond's thinking electrified the computer industry. He argues that the development of the Linux operating system by a loose confederation of thousands of programmers--without central project management or control--turns on its head everything we thought we knew about software project management. Internet-enabled collaboration and free information sharing, not monopolistic control, is the key to innovation and product quality.

This idea was interesting to more than programmers and software project leaders. It suggested a whole new way of doing business, and the possibility of unprecedented shifts in the power structures of the computer industry.

The rush to capitalize on the idea of open source started with Netscape's decision to release its flagship Netscape Navigator product under open source licensing terms in early 1998. Before long, Fortune 500 companies like Intel, IBM, and Oracle were joining the party. By August 1999, when the leading Linux distributor, Red Hat Software, made its hugely successful public stock offering, it had become clear that open source was "the next big thing" in the computer industry.

This revolutionary book starts out with "A Brief History of Hackerdom"--the historical roots of the open-source movement--and details the events that led to the recognition of the power of open source. It contains the full text of "The Cathedral & the Bazaar," updated and expanded for this book, plus Mr. Raymond's other key essays on the social and economic dynamics of open source software development.

Open source is the competitive advantage in the Internet Age. The Cathedral & the Bazaar is a must for anyone who cares about the computer industry or the dynamics of the information economy. Already, billions of dollars have been made and lost based on the ideas in this book. Its conclusions will be studied, debated, and implemented for years to come....

    It may be foolish to consider Eric Raymond's recent collection of essays, The Cathedral and the Bazaar, the most important computer programming thinking to follow the Internet revolution. But it would be more unfortunate to overlook the implications and long-term benefits of his fastidious description of open-source software development considering the growing dependence businesses and economies have on emerging computer technologies.

The Cathedral and the Bazaar takes its title from an essay Raymond read at the 1997 Linux Kongress. The essay documents Raymond's acquisition, re-creation, and numerous revisions of an e-mail utility known as fetchmail. Raymond engagingly narrates the fetchmail development process while elaborating on the ongoing bazaar development method he uses with the help of volunteer programmers. The essay smartly spares the reader from the technical morass that could easily detract from the text's goal of demonstrating the efficacy of the open-source, or bazaar, method in creating robust, usable software.

Once Raymond has established the components and players necessary for an optimally running open-source model, he sets out to counter the conventional wisdom of private, closed-source software development. Like superbly written code, the author's arguments systematically anticipate their rebuttals. For programmers who "worry that the transition to open source will abolish or devalue their jobs," Raymond adeptly and factually counters that "most developer's salaries don't depend on software sale value." Raymond's uncanny ability to convince is as unrestrained as his capacity for extrapolating upon the promise of open-source development.

In addition to outlining the open-source methodology and its benefits, Raymond also sets out to salvage the hacker moniker from the nefarious connotations typically associated with it in his essay, "A Brief History of Hackerdom" (not surprisingly, he is also the compiler of The New Hacker's Dictionary). Recasting hackerdom in a more positive light may be a heroic undertaking in itself, but considering the Herculean efforts and perfectionist motivations of Raymond and his fellow open-source developers, that light will shine brightly. --Ryan Kuykendall...

Authors: The Honeynet Project.
Paperback, 352 pages
Publisher: Addison-Wesley Professional
Publication Date: 2001-08-31


Reviews :

    This book shares the lessons of the Honeynet Project, in which leading security professionals built networks designed to be compromised. From this they learned everything possible from the "blackhat" hackers who took the bait: their tools, their tactics, and their motives. The insights in this book will go a long way towards helping security professionals protect their networks against real attacks. If that's not enough, the book shows you how to build your own honeynet, learning even more about today's most significant exploits -- and tomorrow's. Lance Spitzer, leader of The Honeynet Project, begins by introducing honeynets and honeypots (the parts that make up the honeynet network), explaining how they work, and showing how to build one. Next, Know Your Enemy focuses on an in-depth analysis of attacks, including detailed analyses of compromised systems, and techniques for containing blackhat hackers while you gather evidence and work to identify them. Part III takes you into the minds of the blackhat hackers, focusing on the evidence left by actual attacks -- not theory or speculation. For all computer security specialists, and network and system administrators concerned with intrusion detection and security....