The Virtual Bookcase for browsing and sharing reviews of books. New to this site? Read the welcome page first.

The Virtual Bookcase Home
Recent reviews
Collected book news
Welcome to this site
Add your own book

Book details of 'Security Warrior'

Cover of Security Warrior
TitleSecurity Warrior
Author(s)Cyrus Peikari, Anton Chuvakin
ISBN0596005458
LanguageEnglish
PublishedFebruary 2004
PublisherO'Reilly & Associates
Web links for this book
Search at Bookcrossing.com
Wikipedia booksources
Shop for this book
At Amazon.com
At Amazon.co.uk

Back to shelf Computer security
Amazon.com info for Security Warrior

Score:

Vote for this book

The Virtual Bookcase Reviews of 'Security Warrior':

Reviewer Rob Slade wrote:
The preface isn't a really clear piece of writing, but does, eventually, get around to stating that the book focuses on security from an attack, rather than defence, perspective. I have, in numerous other reviews, pointed out the errors and limitations in this position. Part one deals with cracking software, primarily involved with breaking copy protection. Chapter one explains a few concepts about assembly language quite well, and then ends abruptly. Some Windows tools for reverse engineering are listed in chapter two, plus a couple of poorly explained examples. The material on reverse engineering in Linux is longer and more detailed, but still has very limited tutorial value, and is padded with extensive code listings of dubious worth. Chapter four is supposed to deal with reverse engineering for Windows CE, but contains an odd mix of CE operating system architecture, a partial list of ARM CPU opcodes, and a description of how to crack the registration code check in a program written solely to allow you to crack the registration code check embedded within it. Overflow attacks, in chapter five, explains buffer and other overflow conditions, and gives an example of a buffer overflow as a crack in another fake program. Part two presents information about networks. Chapter six is a rather unstructured overview of TCP/IP and a listing of some sniffing tools. (TCP is explained before IP itself, and the relationship of the various protocols in the suite is not discussed. A section on "covert channels" emphasizes a strange misuse of header fields, and then drifts into something like session hijacking.) Social engineering can be used in a variety of ways, so it is strange that chapter seven should be here rather than in the "Advanced Defence" of part four. The random content provided has little organization and a fair number of errors: the authors insist that social engineering attacks can be divided into active and passive types, but, by its nature, social engineering is almost entirely active. (The book does seem to tacitly admit this: there is a list of example "active" attacks, but no corresponding "passive" list.) Chapter eight mentions a few methods of reconnaissance with differing levels of detail. Some more advanced techniques for identifying the operating systems in chapter nine, but the particulars are similarly inconsistent. Part three lists attacks against specific platforms. The authors betray their lack of study once again in chapter eleven: UNIX is *not* "reborn from" MULTICS (although it was heavily influenced), and TCSEC (the Trusted Computer System Evaluation Criteria) is definitely *not* the Common Criteria. The various security related aspects, tools, and hardening of UNIX are not bad, but lack definition. The UNIX attacks listed in chapter twelve are good: ironically, because of the generic nature of the descriptions the examples are probably useful as a guide to defensive measures, rather than being outdated tricks. The Windows client attacks listed in chapter thirteen, because they are specific, have limited the material both in scope and utility. Chapter fourteen, listing Windows server attacks, notes some interesting security bugs in Server 2003 and other programs (and one bit on smartcards.) "SOAP XML Web Services Security," in chapter fifteen, is a long title for a short piece on XML digital signatures. "SQL Injection," in chapter sixteen, has some examples of malformed data attacks, and also points out the dangers of adding programming functionality to applications. As with social engineering, the tie to networks is thin, seemingly limited to the PHPNuke program. Some aspects of wireless antennae, sniffing, and a brief review of the weaknesses in WEP (Wired Equivalent Privacy) are in chapter seventeen. Part four looks at more advanced defence. Miscellaneous thoughts on logging are in chapter eighteen. Chapter nineteen has a confused explanation of intrusion detection systems (IDS). There is no mention of rule (or activity monitoring) based engines, signature based engines are said to be restricted to net-based IDS, different terms are used for anomaly detection engines on hosts versus networks, and there is a muddled attempt to tie Bayesian analysis to odd mathematical ratios of false positive (false rejection) and false negative (false acceptance) errors. The installation of a simple honeypot is described in chapter twenty (which probably *should* be in part two). There is a good initial outline of incident response in chapter twenty one, but it breaks down when getting into specifics. Forensics and antiforensics, in chapter twenty two, gives some background and tools for data recovery and obfuscation. It is ironic that the book starts out with a quotation from "The Code of the Samurai," stating that "[a]ll samurai ought certainly to apply themselves to the study of military science. But a bad use can be made of this study to puff oneself up and disparage one's colleagues by a lot of high-flown but incorrect arguments that only mislead the young ..." This assessment fits Peikari and Chuvakin's work almost perfectly. There is a lot of interesting information in this volume: if you have limited technical background in the fields examined, you will find that a quick perusal will provide you with some superficial familiarity with the topics. However, the uneven coverage ensures that the information is spectacular, rather than tutorial. The disjointed jumps from one subject to the next prove the technical erudition of the authors, but do not help the reader very much. copyright Robert M. Slade, 2004
Add my review for Security Warrior

Book description:

When it comes to network security, many users and administrators are running scared, and justifiably so. The sophistication of attacks against computer systems increases with each new Internet worm. What's the worst an attacker can do to you? You'd better find out, right? That's what Security Warrior teaches you. Based on the principle that the only way to defend yourself is to understand your attacker in depth, Security Warrior reveals how your systems can be attacked. Covering everything from reverse engineering to SQL attacks, and including topics like social engineering, antiforensics, and common attacks against UNIX and Windows systems, this book teaches you to know your enemy and how to be prepared to do battle. Security Warrior places particular emphasis on reverse engineering. RE is a fundamental skill for the administrator, who must be aware of all kinds of malware that can be installed on his machines -- trojaned binaries, "spyware" that looks innocuous but that sends private data back to its creator, and more. This is the only book to discuss reverse engineering for Linux or Windows CE. It's also the only book that shows you how SQL injection works, enabling you to inspect your database and web applications for vulnerability. Security Warrior is the most comprehensive and up-to-date book covering the art of computer war: attacks against computer systems and their defenses. It's often scary, and never comforting. If you're on the front lines, defending your site against attackers, you need this book. On your shelf--and in your hands.

Search The Virtual Bookcase

Enter a title word, author name or ISBN.

The shelves in The Virtual Bookcase

Arts and architecture (25)
Biography (24)
Business and Management (119)
Cars and driving (53)
Cartoons (45)
Children's books (179)
Computer (475)
Computer history/fun (111)
Computer networks (382)
Computer programming (215)
Computer security (269)
Cook books (89)
Fantasy (154)
Fiction (445)
Health and body (70)
History (135)
Hobby (37)
Horror (65)
Humorous books (52)
Literature (57)
Operating systems (94)
Outdoor camping (162)
Outdoors (236)
Politics (83)
Privacy (61)
Psychology (55)
Religion (17)
Science (113)
Science Fiction (156)
Self-help books (55)
Technology (12)
Travel guides (307)
War and weapons (29)
World Wide Web (211)
Zen (5)
Other books (88)
Mailing list
Subscribe to booktalk, the discussion list about books at The Virtual Bookcase.
Enter your e-mail address to subscribe (you will receive an e-mail to confirm your subscription):
The Virtual Bookcase is created and maintained by Koos van den Hout. Contact e-mail webmaster@virtualbookcase.com.
Site credits
Copyright © 2000-2008 Koos van den Hout / The Virtual Bookcase Copyright and privacy statement