Hacking Exposed 7: Network Security Secrets & Solutions, Seventh Edition [Paperback]

Stuart McClure (Author), Joel Scambray (Author), George Kurtz (Author)

Book Description

Publication Date: July 11, 2012 | ISBN-10: 0071780289 | ISBN-13: 978-0071780285 | Edition: 7

The latest tactics for thwarting digital attacks

“Our new reality is zero-day, APT, and state-sponsored attacks. Today, more than ever, security professionals need to get into the hacker’s mind, methods, and toolbox to successfully deter such relentless assaults. This edition brings readers abreast with the latest attack vectors and arms them for these continually evolving threats.” --Brett Wahlin, CSO, Sony Network Entertainment

“Stop taking punches--let’s change the game; it’s time for a paradigm shift in the way we secure our networks, and Hacking Exposed 7 is the playbook for bringing pain to our adversaries.” --Shawn Henry, former Executive Assistant Director, FBI

Bolster your system’s security and defeat the tools and tactics of cyber-criminals with expert advice and defense strategies from the world-renowned Hacking Exposed team. Case studies expose the hacker’s latest devious methods and illustrate field-tested remedies. Find out how to block infrastructure hacks, minimize advanced persistent threats, neutralize malicious code, secure web and database applications, and fortify UNIX networks. Hacking Exposed 7: Network Security Secrets & Solutions contains all-new visual maps and a comprehensive “countermeasures cookbook.”

• Obstruct APTs and web-based meta-exploits
• Defend against UNIX-based root access and buffer overflow hacks
• Block SQL injection, spear phishing, and embedded-code attacks
• Detect and terminate rootkits, Trojans, bots, worms, and malware
• Lock down remote access using smartcards and hardware tokens
• Protect 802.11 WLANs with multilayered encryption and gateways
• Plug holes in VoIP, social networking, cloud, and Web 2.0 services
• Learn about the latest iPhone and Android attacks and how to protect yourself

Editorial Reviews

About the Author

Stuart McClure, CNE, CCSE, Global CTO for McAfee/Intel, is responsible for a nearly $3B consumer and corporate security products business. During his tenure at McAfee, Stuart has also held the General Manager position for the Security Management Business for McAfee/Intel, which enabled all McAfee corporate security products to be operationalized, managed, and measured. Alongside those roles, Stuart has also run an elite team of good guy hackers inside McAfee called TRACE that discovered new vulnerabilities and emerging threats. Previously, Stuart helped run security at the largest healthcare company in the U.S., Kaiser Permanente. In 1999, Stuart was also the original founder of Foundstone, Inc., a global consulting and products company, which was acquired by McAfee in 2004.

Joel Scambray, CISSP, is Managing Principal with Citigal as well as Co-Founder of Consciere LLC. He was previously chief strategy officer for Leviathan Security Group, an information security consultancy. He was a senior director at Microsoft Corporation, where he led Microsoft's online services security efforts for three years before joining the Windows platform and services division to focus on security technology architecture. Before joining Microsoft, Joel co-founded security software and services startup Foundstone, Inc., and helped lead it to acquisition by McAfee. He has spoken widely on information security at forums including Black Hat, I-4, and The Asia Europe Meeting (ASEM). Joel is the co-author of all five editions of Hacking Exposed and lead author of Hacking Exposed: Windows, currently in its third edition, and Hacking Exposed: Web Applications, currently in its second edition.

George Kurtz, CISSP, George Kurtz is co-founder and CEO of CrowdStrike, a cutting-edge big data security technology company focused on helping enterprises and governments protect their most sensitive intellectual property and national security information. George Kurtz is also an internationally recognized security expert, author, entrepreneur, and speaker. He has almost twenty years of experience in the security space and has helped hundreds of large organizations and government agencies around the world tackle the most demanding security problems. His entrepreneurial background and ability to commercialize nascent technologies has enabled him to drive innovation throughout his career by identifying market trends and correlating them with customer feedback, resulting in rapid growth for the businesses he has run. In 2011 George relinquished his role as McAfee’s Worldwide Chief Technology Officer to his co-author and raised $26M in venture capital to create CrowdStrike. During his tenure as McAfee’s CTO, Kurtz was responsible for driving the integrated security architectures and platforms across the entire McAfee portfolio. Kurtz also helped drive the acquisition strategy that allowed McAfee to grow from $1b in revenue in 2007 to over $2.5b in 2011. In one of the largest tech M&A deals in 2011, Intel (INTC) acquired McAfee for nearly $8b. Prior to joining McAfee, Kurtz was Chief Executive Officer and co-founder of Foundstone, Inc., which was acquired by McAfee in October 2004. You can follow George on Twitter @george_kurtz or his blog at http://www.securitybattlefield.com.

Product Details

• Paperback: 768 pages
• Publisher: McGraw-Hill Osborne Media; 7 edition (July 11, 2012)
• Language: English
• ISBN-10: 0071780289
• ISBN-13: 978-0071780285
• Product Dimensions: 7.4 x 1.5 x 9.1 inches
• Shipping Weight: 2.6 pounds (View shipping rates and policies)
• Average Customer Review: 4.5 out of 5 stars  See all reviews (13 customer reviews)
• Amazon Best Sellers Rank: #26,900 in Books (See Top 100 in Books)
  • #5 in Books > Computers & Technology > Security & Encryption > Viruses
  • #11 in Books > Computers & Technology > Networking > Internet, Groupware, & Telecommunications
  • #13 in Books > Computers & Technology > Programming > Algorithms > Cryptography

Most Helpful Customer Reviews

21 of 21 people found the following review helpful

5.0 out of 5 stars Version 7 of the classic reference on the topic August 6, 2012

By Ben Rothke

Format:Paperback

The first version of Hacking Exposed came out in 1999. The book was a game changer that made penetration and vulnerability testing available to the masses. Needless to say that in the ensuing 13 years, there has been a huge amount of change in the world of information security.

With the release of Hacking Exposed 7: Network Security Secrets & Solutions, authors Stuart McClure, Joel Scambray and George Kurtz (along with over 10 contributing authors) provide an up to date version to the original classic.

The book builds on the fundamentals of the first edition, and does include essentials of hacking on topics such as enumeration, foot printing, scanning, operating system detection and a lot more.

The latest edition gets into current threats and details the new menace of APT (advanced persistent threats), embedded hacking, database hacking, and significant coverage of mobile devices.

The book also spends more time on dealing with countermeasures to the various threats and vulnerabilities detailed.

At over 700 pages, Hacking Exposed 7: Network Security Secrets & Solutions, the book covers every core area of interest to penetration testers.

Written in a lucid and easy to read style, the updated version remains the best book on the topic.

5 of 5 people found the following review helpful

5.0 out of 5 stars Great book! November 18, 2012

By Sammy Spann

Format:Paperback|Amazon Verified Purchase

Overall an excellent book and easy to understand. I have always loved the Hacking Exposed books. The books are designed to be an organized, easy reference for anyone. The books provide detailed explanation of different types of attacks and then go on to explain the countermeasures for each. It makes a great resource for my CEH preperation.

4 of 4 people found the following review helpful

5.0 out of 5 stars Very Informative November 29, 2012

By Jacob Benz

Format:Paperback|Amazon Verified Purchase

This is a great reference tool. Easy to follow along and understand, even for a network security novice like me.

1 of 1 people found the following review helpful

3.0 out of 5 stars A lot of regurgitated info April 6, 2013

By Greg Turner

Format:Paperback|Amazon Verified Purchase

I have versions 5 and 6 of this book. There wasn't a lot of "NEW" info in my opinion.... Just restated in different ways. Its still one of my favorite titles though.

1 of 1 people found the following review helpful

4.0 out of 5 stars Very informative! January 3, 2013

By Skeptical User

Format:Paperback|Amazon Verified Purchase

The book arrived on time and is very informative; it details different hacks and exploits from over ten years ago to the most recent.

3 of 4 people found the following review helpful

5.0 out of 5 stars Great Book October 16, 2012

By Mark A. Miller Jr.

Format:Paperback|Amazon Verified Purchase

This book is really helpful. I know it will help me on my future CISSP, CEH journey. This item is a must buy for those with ethical hacking on their mind.

6 of 9 people found the following review helpful

5.0 out of 5 stars A must for information security professionals August 31, 2012

By EL PROFESSOR

Format:Paperback|Amazon Verified Purchase

I have just begun reading this book. This is a treasure trove of information on how hackers work and what to do about it. the examples are easy to follow and understand.
I highly recommend this book for any information security professional. While I am not a penetration tester, I believe this book and the rest of the series is vital to any pen testers toolbox.

2 of 3 people found the following review helpful

5.0 out of 5 stars good book - well categorized December 21, 2012

By rimrim

Format:Paperback|Amazon Verified Purchase

Having understood networking concepts ( protocols, cryptography, ... ), this will be a great book to further understand and apply the theory