Customer Reviews

Hacking Exposed: Network Security Secrets & Solutions (Hacking Exposed)

5 star:		(30)
4 star:		(18)
3 star:		(6)
2 star:		(4)
1 star:		(1)

 

 

This is an excellent book on computer and network security. I thought I new a lot about the subject, but after reading this book from cover to cover I know how much work I need to do to secure my networks. The book is packed with real-world scenarios and up to date information and tools (or links to tools) needed to hack into virtually any type of system. Fortunately, the authors wisely chose to provide countermeasures for each hack listed, which is invaluable to anyone who's livelihood involves maintaining networks. The organization of the book is excellent - it takes you through the steps needed to hack a system, from identification and enumeration to actual penetration, but also allows the advanced reader to quickly find system specific information or methods. Several appendixes are loaded with links to security sites and tools, legal information, and even common port lists. A must read for anyone who owns a computer; you will realize how vulnerable you really are.

I've read about 4 security books and this book was far better than the rest. Instead of simply telling you not to run a certain service cuz it might have a hole, it actually tells you what the hole is, how to exploit it, and where to get the tools you need to exploit it. This isn't a list of programs and their holes though, it starts at the begining teaching you how to enumarate (get info) from a computer from all kinds of different methods, such as trying to find out OSs, their versions, services that are running and who is currently on the system. It talks about scanning groups of computers to find the few that are exploitable. It then goes on to explain specific Windows9X holes, then NT, to Novell, and then to Unix. Spending upto 60 pages on each operating system (very in depth and all of it usefull). There are also chapters just on dialup and VPNs (virtual private networks), firewalls, network hardware (routers) and an entire chapter just about DoS's (Denial of Services). It then goes into Advance Techniques, problems with PHP and ASP, and then onto a chapter on Windows2000 (talk about being up to date). As far as my book collection goes, this definetly gets my Top5 rating of the 100+ books I've read. Theres alot of meat to eat in this book.

Hacking exposed is one of the best books that I have come across. It is good for network administrators and new hackers alike. Hacking exposed takes you from the beginning to the end of a hack. It shows you how to catch the hacker, and it shows the hacker how not to get caught. I highly recommend this book if you have a network or are interested in network security.

I am responsible for a 50+ person intrusion detection mission, and I've recommend this volume to each new analyst since I read it in Oct 99. The is one of the few mainstream publications which methodically and clearly steps through the process of exploiting an Internet target. I am surprised earlier reviewers wanted more how-to information -- just how detailed does it have to be? For example, if some folks I watched last fall trying RDS/MDAC exploits had followed the author's examples, they would have done more than deface web sites. While books detailing exploits risk instant obsolescence -- notice "Maximum Security" will release edition 3 soon -- this work maintains the proper balance between tech and theory. For new security personnel, "Hacking Exposed" provides a logical and easy-to-follow reference; older hands will enjoy pointing to the book when new folks ask questions! Thanks Stuart, Joel, and George!

I have long been a hacker of the benign sort, as well as a senior corporate systems manager. When Internet hacking/cracking started to become a serious concern, I decided I needed to educate myself on the subject rather than continue to rely on my staff and consultants.

This book did an excellent job getting me started. You have to come into it knowing what traceroute means, but given that, the book's "it takes a thief to catch a thief" approach does the trick.

I recommend that every CIO in the world read this book. Or else.

The authors did their homework on this one. Anyone who spends time at the Cons will recognize many of the names that helped with the information put forth in this book. For those of you who know Hobbit, Mudge, Simple Nomad,AlephOne and many others know the incredible level of expertise they offer. These are the guys that make the things that break the things we make.

This book was a good read. I bought it last week and I'm going through it a second time this week. If you are serious about learning security this book is a must have. It was well done and has good solid information. After reading it you realize just how screwed your network can be - and how easy it is with the readily available tools on the net. Good job guys, it's another keeper.

I build encrypted data networks for the US Govt. This book contains MUCH more information than I expected. It fluently covers the methods used before and during a network attack. Hacking Exposed impressed me so much that I have put it into my personal collection and recommended it to more than a dozen colleagues.

Excellent work gentlemen! I look forward to more from McClure, Scambray, and Kurtz.

I purchased this book to educate myself on threats to networks. Although I have a strong computing background (degree in computational chemistry, 20+ years application programming), my network weakness made this book virtually incomprehensible.

It is laid out much like a dictionary where an attack is listed along with its popularity, simplicity, impact and risk rating. What usually follows is a very technical discussion of the attack and possible counter measures.

I suspect that this book would be a great use to network and system administrators, but I also suspect few others will get much out of it.

I read the couple of bad reviews before buying the book and compared them to the more than 20 great reviews. I may have been reading a different book than those reviewers who did not like the book.

I found it extremely useful and the right level of detail for both sysadmins who have had years of experience and for security specialists in the consulting arena.

The reviewer who obviously thinks himself a hacker is just a wanna-be security specialist. It was obvious that the authors had years of security experience and could talk to both the sysadmins and security specialists. Real security specialists can appreciate how detailed the book is and how much of a reference guide it can be.

This was a great book that I recommend to all my co-workers.

Jason

I think this book does a fairly good job of educating those who consider themselves to be beginners or medium-level security people. The book is easy to read, but it is clearly focused on Microsoft products, and doesn't say much about 'advanced' hacking. For those who want to learn how to 'hack', this is a dream come true.