Exploring Online Games: Cheating Massively Distributed Systems [Kindle Edition]

Greg Hoglund (Author), Gary McGraw (Author)

Editorial Reviews

Product Description

This is the eBook version of the printed book.

"Imagine trying to play defense in football without ever studying offense. You would not know when a run was coming, how to defend pass patterns, nor when to blitz. In computer systems, as in football, a defender must be able to think like an attacker. I say it in my class every semester, you don't want to be the last person to attack your own system--you should be the first.

"The world is quickly going online. While I caution against online voting, it is clear that online gaming is taking the Internet by storm. In our new age where virtual items carry real dollar value, and fortunes are won and lost over items that do not really exist, the new threats to the intrepid gamer are all too real. To protect against these hazards, you must understand them, and this groundbreaking book is the only comprehensive source of information on how to exploit computer games. Every White Hat should read it. It's their only hope of staying only one step behind the bad guys."

--Aviel D. Rubin, Ph.D.
Professor, Computer Science
Technical Director, Information Security Institute
Johns Hopkins University

"Everyone's talking about virtual worlds. But no one's talking about virtual-world security. Greg Hoglund and Gary McGraw are the perfect pair to show just how vulnerable these online games can be."

--Cade Metz
Senior Editor
PC Magazine

"If we're going to improve our security practices, frank discussions like the ones in this book are the only way forward. Or as the authors of this book might say, when you're facing off against Heinous Demons of Insecurity, you need experienced companions, not to mention a Vorpal Sword of Security Knowledge."

--Edward W. Felten, Ph.D.
Professor of Computer Science and Public Affairs
Director, Center for Information Technology Policy
Princeton University

"Historically, games have been used by warfighters to develop new capabilities and to hone existing skills--especially in the Air Force. The authors turn this simple concept on itself, making games themselves the subject and target of the 'hacking game,' and along the way creating a masterly publication that is as meaningful to the gamer as it is to the serious security system professional.

"Massively distributed systems will define the software field of play for at least the next quarter century. Understanding how they work is important, but understanding how they can be manipulated is essential for the security professional. This book provides the cornerstone for that knowledge."

--Daniel McGarvey
Chief, Information Protection Directorate
United States Air Force

"Like a lot of kids, Gary and I came to computing (and later to computer security) through games. At first, we were fascinated with playing games on our Apple ][s, but then became bored with the few games we could afford. We tried copying each other's games, but ran up against copy-protection schemes. So we set out to understand those schemes and how they could be defeated. Pretty quickly, we realized that it was a lot more fun to disassemble and work around the protections in a game than it was to play it.

"With the thriving economies of today's online games, people not only have the classic hacker's motivation to understand and bypass the security of games, but also the criminal motivation of cold, hard cash. That's a combination that's hard to stop. The first step, taken by this book, is revealing the techniques that are being used today."

--Greg Morrisett, Ph.D.
Allen B. Cutting Professor of Computer Science
School of Engineering and Applied Sciences
Harvard University

"If you're playing online games today and you don't understand security, you're at a real disadvantage. If you're designing the massive distributed systems of tom...

About the Author

Greg Hoglund has been involved with software security for many years, specializing in Windows rootkits and vulnerability exploitation. He founded the website www.rootkit.com, and has coauthored several books on software security (Exploiting Software: How to Break Code and Rootkits: Subverting the Windows Kernel, both from Addison-Wesley). Greg is a long-time game hacker and spends much of his free time reverse engineering and tooling exploits for new games. Professionally, Greg offers in-depth training on rootkit development and software exploits. He is currently CEO of HBGary, Inc. (www.hbgary.com), building a world-class product for software reverse engineering and digital forensics.

Gary McGraw is the CTO of Cigital, Inc., a software security and quality consulting firm with headquarters in the Washington, D.C., area. He is a globally recognized authority on software security and the author of six best-selling books on this topic. The latest, Software Security: Building Security In, was released in 2006. His other titles include Java Security (Wiley), Building Secure Software (Addison-Wesley), and Exploiting Software (Addison-Wesley). He is the editor of the Addison-Wesley Software Security Series. Dr. McGraw has also written more than 90 peer-reviewed scientific publications, writes a monthly security column for darkreading.com, and is frequently quoted in the press. Besides serving as a strategic counselor for top business and IT executives, Gary is on the advisory boards of Fortify Software and Raven White. His dual Ph.D. is in cognitive science and computer science from Indiana University where he serves on the Dean's Advisory Council for the School of Informatics. Gary is an IEEE Computer Society Board of Governors member and produces the monthly Silver Bullet Security Podcast for IEEE Security & Privacy magazine.

See all Editorial Reviews

Product Details

• Format: Kindle Edition
• File Size: 5012 KB
• Print Length: 384 pages
• Simultaneous Device Usage: Up to 5 simultaneous devices, per publisher limits
• Publisher: Addison-Wesley Professional; 1 edition (July 9, 2007)
• Sold by: Amazon Digital Services
• Language: English
• ASIN: B00142KQE8
• Text-to-Speech: Enabled
• Average Customer Review: 3.6 out of 5 stars  See all reviews (17 customer reviews)
• Amazon Best Sellers Rank: #409,254 Paid in Kindle Store (See Top 100 Paid in Kindle Store)

Customer Reviews

Most Helpful Customer Reviews

18 of 21 people found the following review helpful:

1.0 out of 5 stars Too General, not for a programmer, March 29, 2009

By 

Anh Nguyen - See all my reviews
(REAL NAME)   

This review is from: Exploiting Online Games: Cheating Massively Distributed Systems (Paperback)

As a programmer point of view, this book is useless. Before buying the book, I want to know how to debug a game, how to find NPC offset, and how to find functions used inside the game. This book is mostly about what is legal and what is not. I have learned nothing from this book.

23 of 30 people found the following review helpful:

2.0 out of 5 stars Self Promoting Cut and Paste Mess, January 12, 2008

By 

Real Name - See all my reviews

This review is from: Exploiting Online Games: Cheating Massively Distributed Systems (Paperback)

By the way, you can read more in my book . . .
If you want to know more, buy . . .
Discuss further in my book and every other book printed by my publishing company . . .

This book is a mess of poorly explained code snippets and self promotion. Also, it focues 90% of its hacking on WoW. If you don't know anything about World of Warcraft, then you will be completly lost. I have /timeplayed 1000 hours, so I could follow all of the WoW references, but unfamiliar readers will not understand large parts of the book.

Half of the work in this book is just cut and pasted from code scattered on the internet. If you don't know C++, how to exploit the Windows OS, or modifying memory, these walls of code don't make much sense.

This is the first book I have ever returned. The constant self promoting and lazy cut and paste code just frustrated the hell out of me.

8 of 10 people found the following review helpful:

1.0 out of 5 stars A script kiddie could have written this book, May 18, 2010

By 

Computer Science Student (NY) - See all my reviews

Amazon Verified Purchase

This review is from: Exploiting Online Games: Cheating Massively Distributed Systems (Paperback)

This is by far the worst book I have ever bought. I just finished a systems programming class which I received an A in and at times this book left me guessing at what was going on. In my honest opinion I could have found a script kiddie on a random set of forums on the internet that would explain the code in the book better then the authors did. Most of the code seems to be stolen from random World of Warcraft hacks that other people have produced. Most of the book leaves open ended paragraphs that say "this is possible, but to understand it you must buy my other book ...". For a book that was supposed to help developers prevent such vulnerabilities it only seems to aid in letting the reader know that certain types of vulnerabilities exist. I couldn't stop laughing when I came to the section titled "Standing Way Outside the Game: Manipulating Network Packets". This section starts out promising with a nice introduction but as soon as you turn the page all that's there is a "screenshot" of code from another World of Warcraft script to decrypt packets. End section. I HIGHLY RECOMMEND YOU DO NOT BUY THIS BOOK.