Programming Books C Java PHP Python Learn more Browse Programming Books
Qty:1
  • List Price: $54.95
  • Save: $15.62 (28%)
Only 19 left in stock (more on the way).
Ships from and sold by Amazon.com.
Gift-wrap available.
Writing Security Tools an... has been added to your Cart
FREE Shipping on orders over $35.
Used: Very Good | Details
Sold by quirkybooksabq
Condition: Used: Very Good
Comment: Minor wear; remainder mark.
Access codes and supplements are not guaranteed with used items.
Trade in your item
Get a $2.00
Gift Card.
Have one to sell? Sell on Amazon
Flip to back Flip to front
Listen Playing... Paused   You're listening to a sample of the Audible audio edition.
Learn more
See all 2 images

Writing Security Tools and Exploits Paperback – Illustrated, March 11, 2006

ISBN-13: 978-1597499972 ISBN-10: 9781597499972 Edition: 1st

Buy New
Price: $39.33
26 New from $31.11 21 Used from $15.99 1 Collectible from $57.98
Rent from Amazon Price New from Used from
Kindle
"Please retry"
$18.08
Paperback, Illustrated
"Please retry"
$39.33
$31.11 $15.99
Free%20Two-Day%20Shipping%20for%20College%20Students%20with%20Amazon%20Student

$39.33 FREE Shipping. Only 19 left in stock (more on the way). Ships from and sold by Amazon.com. Gift-wrap available.

Frequently Bought Together

Writing Security Tools and Exploits + Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals + Buffer Overflow Attacks: Detect, Exploit, Prevent
Price for all three: $115.27

Buy the selected items together

NO_CONTENT_IN_FEATURE
Shop the new tech.book(store)
New! Introducing the tech.book(store), a hub for Software Developers and Architects, Networking Administrators, TPMs, and other technology professionals to find highly-rated and highly-relevant career resources. Shop books on programming and big data, or read this week's blog posts by authors and thought-leaders in the tech industry. > Shop now

Product Details

  • Paperback: 650 pages
  • Publisher: Syngress; 1 edition (March 11, 2006)
  • Language: English
  • ISBN-10: 9781597499972
  • ISBN-13: 978-1597499972
  • ASIN: 1597499978
  • Product Dimensions: 7 x 1.7 x 8.9 inches
  • Shipping Weight: 2.4 pounds (View shipping rates and policies)
  • Average Customer Review: 4.5 out of 5 stars  See all reviews (2 customer reviews)
  • Amazon Best Sellers Rank: #1,355,918 in Books (See Top 100 in Books)

Editorial Reviews

About the Author

James C. Foster, Fellow, is the Deputy Director of Global Security Solution Development for Computer Sciences Corporation where he is responsible for the vision and development of physical, personnel, and data security solutions. Preceding CSC, Foster was the Director of Research and Development for Foundstone Inc. and was responsible for all aspects of product, consulting, and corporate R&D initiatives. Prior to joining Foundstone, Foster was an Executive Advisor and Research Scientist with Guardent Inc. and an adjunct author at Information Security Magazine, subsequent to working as Security Research Specialist for the Department of Defense. Foster is also a well published author with multiple commercial and educational papers; and has authored, contributed, or edited for major publications to include Snort 2.1 Intrusion Detection (Syngress, ISBN: 1-931836-04-3), Hacking Exposed, Fourth Edition, Anti-Hacker Toolkit, Second Edition, Advanced Intrusion Detection, Hacking the Code: ASP.NET Web Application Security (Syngress, ISBN: 1-932266-65-8), Anti-Spam Toolkit, Google Hacking for Penetration Techniques (Syngress, ISBN: 1-931836-36-1), and Sockets, Shellcode, Porting and Coding (Syngress ISBN: 1-597490-05-9).

More About the Author

Vincent Liu (CISSP) is a Partner at Bishop Fox (formerly Stach & Liu), a security consulting firm providing services to the Fortune 500, global financial institutions, and high-tech startups. In this role, he oversees firm strategy, practice development, and client matters.

Vincent is a recognized expert with regular columns in Dark Reading and SecurityWeek. He has presented at Black Hat, ToorCon, InfoSec World, SANS, and Microsoft BlueHat. In addition to regularly being cited by the press, Vincent has been interviewed and quoted in Al Jazeera, USA Today, NPR, and CSO Magazine. He has also co-authored several industry best-selling books, including: Hacking Exposed Wireless 1st and 2nd Edition; Hacking Exposed Web Applications 3rd Edition, and most recently Web Application Security: A Beginner's Guide.

Prior to founding Bishop Fox, Vincent led the Attack & Penetration team for the Global Security unit at Honeywell International. Before that, he was a consultant with the Ernst & Young Advanced Security Centers and an analyst at the National Security Agency.

Vincent holds a Bachelor of Science and Engineering from the University of Pennsylvania with a major in Computer Science and Engineering and a minor in Psychology.

Customer Reviews

4.5 out of 5 stars
5 star
1
4 star
1
3 star
0
2 star
0
1 star
0
See both customer reviews
Share your thoughts with other customers

Most Helpful Customer Reviews

19 of 19 people found the following review helpful By Marco De Vivo on December 28, 2005
Format: Paperback Verified Purchase
Would like just to tell how good this book is (and it is indeed), but I am very disappointed by the fact that no CD is actually included and the companion Web site doesn't seem to exist either. !!

The Editorial review claims:

"The book is accompanied with a companion Web site containing both commented and uncommented versions of the source code examples presented throughout the book. In addition to the book source code, the CD also contains a copy of the author-developed Hacker Code Library v1.0."

Well, sorrily, that's NOT true.

Perhaps this confusion is due to changes resulting from the merge of Syngress with ORA, but still not fair with buyers.

Otherwise, if you, like me, are a researcher (or just interested) in the "secure code" area, then buy the book in spite of all.

By far it is the very best book written about these issues. Best in the sense of most useful. Well designed organized, with in deep study of vulnerabilities and associated exploit codes. Shellcode is explained in a rich and fresh way and the Why, How and When of shellcode are explained under an integrated framework.

NASL and MSF are explained and used in detailed and useful examples, and IMHO, this book presents the most easy, clear and condensed explanation about the Race Conditions, Format Strings, and Buffer Overflows problems I ever read yet.

Warning: Not an entry level book. You need to be familiar with several software and hardware architecture concepts to obtain full benefits from it.
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again
4 of 7 people found the following review helpful By Dan McKinnon VINE VOICE on April 24, 2006
Format: Paperback
If you are an IT professional that needs to learn more about security exploitation and how people can get in and abuse your system, this is a great book for this purpose. Very technical book, not for beginners!!

If you work in IT and want to learn about how to keep the hackers out, this text is a worthwhile read for you

**** RECOMMENDED
Comment Was this review helpful to you? Yes No Sending feedback...
Thank you for your feedback. If this review is inappropriate, please let us know.
Sorry, we failed to record your vote. Please try again