Authors: Norbert Zaenglein.
Paperback, 112 pages
Publisher: Paladin Press
Publication Date: 1998-09-01


Reviews :

    "Disk Detective" is designed to bring the secrets of information recover to the average person. In it, the author shows PIs, parents, teachers, business owners and law enforcement professionals what types of information can be recovered from IBM-compatible personal computers and how. He includes step-by-step instructions for * recovering information from reformatted disks or overwritten files retrieving deleted files * discovering passwords * retracing visited Internet files * Locating e-mail messages, and more....

Authors: Steve Weisman.
Paperback, 224 pages
Publisher: FT Press
Publication Date: 2008-01-28
Edition: 1

Reviews :

    This is the eBook version of the printed book. If the print book includes a CD-ROM, this content is not included within the eBook version. Scams are everywhere...now discover exactly how to protect yourself!

• The truth about recognizing today's newest scams--online and off
• The truth about safeguarding your money, health, and reputation
• The truth about phishing, vishing, pharming, slamming, and more

Scams have always been with us, and they always will be - except now, technology makes scammers' jobs even easier, enabling them to reach out from anywhere around the world, and take advantage of more people than ever before. No matter how smart you think you are, you can easily become a victim: in fact, scammers have discovered that educated, sophisticated individuals are among their best targets. The Truth About Avoiding Scams arms you with everything you need to protect yourself: real, up-to-the-minute knowledge, and the "internal sensors" you need to sniff out even the subtlest, most well-crafted scams. Consumer finance expert and nationally syndicated radio host Steve Weisman offers quick, bite-size, just-the-facts information about every type of fraud, from identity scams to computer-based fraud, travel and health scams to phony educational loans and scholarships. Weisman exposes the new epidemic of "affinity fraud," where "people just like you" target you based on your ethnicity, racial group, church, club, or fraternal organization. You'll find up-to-the-minute guidance on avoiding illegitimate online dating services; "cramming" and other phone frauds; tax and Social Security scams; employment, home repair, and investment scams; and a whole lot more. Unlike some books on scams, this one's simple to read, simple to use, up to date, and complete: the only guide you need to keep yourself safe! ...

Authors: Chris Prosise. Kevin Mandia.
Paperback, 512 pages
Publisher: McGraw-Hill Companies
Publication Date: 2001-06-21


Reviews :

    Incident response is a multidisciplinary science that resolves computer crime and complex legal issues, chronological methodologies and technical computer techniques. The commercial industry has embraced and adopted technology that detects hacker incidents. Companies are swamped with real attacks, yet very few have any methodology or knowledge to resolve these attacks. "Incident Response: Investigating Computer Crime" will be the only book on the market that provides the information on incident response that network professionals need to conquer attacks. "Incident Response: Investigating Computer Crime" picks up where "Hacking Exposed" leaves off, describing the methods and techniques necessary to perform a professional and successful response to computer security incidents. It provides an insider's perspective on the incident response process that has never been disclosed or published, including real case scenarios with insightful tips on how to respond to computer crime incidents....

    A strong system of defenses will save your systems from falling victim to published and otherwise uninventive attacks, but even the most heavily defended system can be cracked under the right conditions. Incident Response aims to teach you how to determine when an attack has occurred or is underway--they're often hard to spot--and show you what to do about it. Authors Kevin Mandia and Chris Prosise favor a tools- and procedures-centric approach to the subject, thereby distinguishing this book from others that catalog particular attacks and methods for dealing with each one. The approach is more generic, and therefore better suited to dealing with newly emerging attack techniques.

Anti-attack procedures are presented with the goal of identifying, apprehending, and successfully prosecuting attackers. The advice on carefully preserving volatile information, such as the list of processes active at the time of an attack, is easy to follow. The book is quick to endorse tools, the functionalities of which are described so as to inspire creative applications. Information on bad-guy behavior is top quality as well, giving readers knowledge of how to interpret logs and other observed phenomena. Mandia and Prosise don't--and can't--offer a foolproof guide to catching crackers in the act, but they do offer a great "best practices" guide to active surveillance. --David Wall

Topics covered: Monitoring computer systems for evidence of malicious activity, and reacting to such activity when it's detected. With coverage of Windows and Unix systems as well as non-platform-specific resources like Web services and routers, the book covers the fundamentals of incident response, processes for gathering evidence of an attack, and tools for making forensic work easier. ...

Authors: Majid Yar.
Paperback, 200 pages
Publisher: Sage Publications Ltd
Publication Date: 2006-06-01


Reviews :

    "Criminology has been rather slow to recognize the importance of cyberspace in changing the nature and scope of offending and victimisation, and a comprehensive introductory textbook on cybercrime and its social implications is long overdue. One of the many strengths of Majid Yar's book is that it avoids 'techy' jargon and unites criminological and sociological perspectives in discussions of cybercrime, cyber-deviance and cyber-freedoms. Yar successfully de-mystifies a subject that causes many criminologists to feel out of their depth (or at least their comfort zone). Cybercrime and Society should be the first point of reference for any student of new media and crime."
- Yvonne Jewkes, The Open University

"An engaging book full of lively discussion and careful explanation of the issues. Majid Yar manages to achieve the seemingly impossible task of balancing theory with action. I shall certainly recommend it to my own cybercrime students."
-David S. Wall, Head of University of Leeds Law School

Cybercrime and Society provides a clear, systematic, and critical introduction to current debates about cybercrime. It locates the phenomenon in the wider contexts of social, political, cultural, and economic change. It is the first book to draw upon perspectives spanning criminology, sociology, law, politics, and cultural studies to examine the whole range of cybercrime issues, including: computer hacking; cyber-terrorism; media 'piracy'; financial fraud and identity theft; online stalking; hate speech; pornography; and surveillance.

The book takes an international perspective, drawing on research, case studies, and examples from the U.K., the U.S., Europe and beyond. It includes chapter outlines and summaries, further reading and a glossary. The book is an essential resource for all students and academics interested in cybercrime and the future of the Internet.

...

Authors: Eric Cole.
Paperback, 800 pages
Publisher: Sams
Publication Date: 2001-08-23
Edition: 1

Reviews :

   

Hackers Beware starts with a roadmap of the various areas of hacking but quickly delves into the details of how specific attacks work and how to protect against them. Since most attacks we hear about either occur or are perceived to come from hackers, people are very interested "in how they do that" - the techniques hackers use to break into systems. Hackers Beware is unique in that it gives specific exploits, exactly how they work and how to protect against them. This book will help readers understand what security threats they are up against and what they need to do to protect against them. Some books cover this from a high level but do not get into the details of specific exploits and cover it in a case by case fashion. This book will cover the complete picture. It will not only describe how an exploit works but present the signature of the attack, what to look for on a network and how to protect against it.

...

    In Hackers Beware, Eric Cole succeeds in explaining how hackers break into computers, steal information, and deny services to machines' legitimate users. An intended side effect of his documentary efforts is a feeling for how network-connected computers should be configured for maximum resistance to attack. Cole, who works with the attack-monitoring SANS Institute as an instructor and security consultant, conveys to his readers specific knowledge of offensive and defensive weaponry as well as general familiarity with attack strategies and good security practices. Hackers Beware is a good primer and really earns its price by going into enough detail to enable readers to actually do something to make their resources safer. It also enables its readers to understand more specialized security texts, including Stephen Northcutt's fine Intrusion Signatures and Analysis.

Cole's didactic style is largely conversational, embracing the fact that most computer exploits can be conveyed as stories about what hackers want and the steps they take to achieve their goals. He punctuates his prose passages with line drawings that clarify what gets passed among the machines involved in an attack, and pauses frequently to show programs' user interfaces and passages from their logs. Cole explains all the jargon he uses--a characteristic that alone distinguishes this book from many of its competitors. --David Wall

Topics covered: What motivates black-hat hackers, and the technical means they use to go about satisfying their ambitions. General attack strategies--spoofing, password cracking, social engineering, and buffer overflows, among others--are explained, and the tools used to carry them out are catalogued. The same goes for defensive tools and practices. ...

Authors: Rajat, Khare.
Paperback, 344 pages
Publisher: Luniver Press
Publication Date: 2006-11-01


Reviews :

    Information security is a highly integral aspect of our daily life, both real-world and virtual. Information security is essentially a process for securing the information of any information user. Today we have valuable information, which is stored on computer/server or data warehouses and digital storage similar to our safes and lockers. The passwords to these digital mediums are the keys to our physical data and asset security media. There are hackers around who either crack these passwords or bomb the locks with various attacks. In the past people had safes for storing their valuables and in today's world almost every one uses computers and stores valuable information like word documents, proposals, usernames, passwords, credit cards. Therefore we all need to understand information security. This book serves as a complete reference for information security including IT security, data security, network security, internet security, penetration testing, cryptography and laws governing the industry. The book presents the subject in simplified manner so that even a beginner in a security understands and implements information security at personal and corporate levels....

Authors: Amber Schroader; Tyler Cohen.
Paperback, 400 pages
Publisher: Syngress Publishing
Publication Date: 2007-05-15


Reviews :

    Learn to pull "digital fingerprints" from alternate data storage (ADS) devices including: iPod, Xbox, digital cameras and more from the cyber sleuths who train the Secret Service, FBI, and Department of Defense in bleeding edge digital forensics techniques. This book sets a new forensic methodology standard for investigators to use.
This book begins by describing how alternate data storage devices are used to both move and hide data. From here a series of case studies using bleeding edge forensic analysis tools demonstrate to readers how to perform forensic investigations on a variety of ADS devices including: Apple iPods, Digital Video Recorders, Cameras, Gaming Consoles (Xbox, PS2, and PSP), Bluetooth devices, and more using state of the art tools. Finally, the book takes a look into the future at "not yet every day" devices which will soon be common repositories for hiding and moving data for both legitimate and illegitimate purposes.

* Authors are undisputed leaders who train the Secret Service, FBI, and Department of Defense
* Book presents "one of a kind" bleeding edge information that absolutely can not be found anywhere else
* Today the industry has exploded and cyber investigators can be found in almost every field...

Authors: Alfred Basta. Wolf Halton.
Paperback, 432 pages
Publisher: Delmar Cengage Learning
Publication Date: 2007-08-31
Edition: 1

Reviews :

    This book is designed to give readers of all backgrounds and experience levels a well-researched and engaging introduction to the fascinating realm of network security. With real-world examples that reflect today's most important and relevant security topics, Penetration Testing will address how and why people attack computers and networks, so that readers can be armed with the knowledge and techniques to successfully combat hackers. Because the world of information security changes so quickly and is often the subject of much hype, this book also aims to provide a clear differentiation between hacking myths and hacking facts. Straightforward in its approach, this valuable resource teaches the skills needed to go from hoping a system is secure to knowing that it is....

Authors: John Chirillo.
Paperback, 576 pages
Publisher: Wiley
Publication Date: 2002-11-06


Reviews :

    Learn how to conduct thorough security examinations via illustrations and virtual simulations

A network security breach (a hack, crack, or other invasion) occurs when unauthorized access to the network is achieved and havoc results. The best possible defense is an offensive strategy that allows you to regularly test your network to reveal the vulnerabilities and close the holes before someone gets in. Written by veteran author and security expert John Chirillo, Hack Attacks Testing explains how to perform your own security audits.

Step by step, the book covers how-to drilldowns for installing and configuring your Tiger Box operating systems, installations, and configurations for some of the most popular auditing software suites. In addition, it includes both common and custom usages, scanning methods, and reporting routines of each. Finally, Chirillo inspects the individual vulnerability scanner results and compares them in an evaluation matrix against a select group of intentional security holes on a target network. Chirillo tackles such topics as:

• Building a multisystem Tiger Box
• Basic Windows 2000 Server installation and configuration for auditing
• Basic Linux and Solaris installation and configuration
• Basic Mac OS X installation and configuration for auditing
• ISS, CyberCop, Nessus, SAINT, and STAT scanners
• Using security analysis tools for Mac OS X
• Vulnerability assessment

Bonus CD!
The CD contains virtual simulations of scanners, ISS Internet Scanner evaluation version, and more....

Authors: Ken Dunham.
Paperback, 440 pages
Publisher: Syngress
Publication Date: 2008-11-14


Reviews :

    Malware has gone mobile, and the security landscape is changing quickly with emerging attacks on cell phones, PDAs, and other mobile devices. This first book on the growing threat covers a wide range of malware targeting operating systems like Symbian and new devices like the iPhone. Examining code in past, current, and future risks, protect your banking, auctioning, and other activities performed on mobile devices.

* Visual Payloads
View attacks as visible to the end user, including notation of variants.

* Timeline of Mobile Hoaxes and Threats
Understand the history of major attacks and horizon for emerging threates.

* Overview of Mobile Malware Families
Identify and understand groups of mobile malicious code and their variations.

* Taxonomy of Mobile Malware
Bring order to known samples based on infection, distribution, and payload strategies.

* Phishing, SMishing, and Vishing Attacks
Detect and mitigate phone-based phishing (vishing) and SMS phishing (SMishing) techniques.

* Operating System and Device Vulnerabilities
Analyze unique OS security issues and examine offensive mobile device threats.

* Analyze Mobile Malware
Design a sandbox for dynamic software analysis and use MobileSandbox to analyze mobile malware.

* Forensic Analysis of Mobile Malware
Conduct forensic analysis of mobile devices and learn key differences in mobile forensics.

* Debugging and Disassembling Mobile Malware
Use IDA and other tools to reverse-engineer samples of malicious code for analysis.

* Mobile Malware Mitigation Measures
Qualify risk, understand threats to mobile assets, defend against attacks, and remediate incidents.

* Understand the History and Threat Landscape of Rapidly Emerging Mobile Attacks

* Analyze Mobile Device/Platform Vulnerabilities and Exploits

* Mitigate Current and Future Mobile Malware Threats...