The Virtual Bookcase for browsing and sharing reviews of books. New to this site? Read the welcome page first.

The Virtual Bookcase Home
Recent reviews
Collected book news
Welcome to this site
Add your own book

Book details of 'InfoSec Career Hacking : Sell Your Skillz, Not Your Soul'

Cover of InfoSec Career Hacking : Sell Your Skillz, Not Your Soul
TitleInfoSec Career Hacking : Sell Your Skillz, Not Your Soul
Author(s)Aaron W. Bayles, Chris Hurley, Johnny Long, Ed Brindley, James C. Foster, Christopher W. Klaus
ISBN1597490113
LanguageEnglish
PublishedApril 2005
PublisherSyngress
Web links for this book
Search at Bookcrossing.com
Wikipedia booksources
Shop for this book
At Amazon.com
At Amazon.co.uk

Back to shelf Computer security
Amazon.com info for InfoSec Career Hacking : Sell Your Skillz, Not Your Soul

Score:

Vote for this book

The Virtual Bookcase Reviews of 'InfoSec Career Hacking : Sell Your Skillz, Not Your Soul':

Reviewer Rob Slade wrote:
The book seems to want to structure itself along the standard network attack model, and therefore part one is reconnaissance. Chapter one is supposed to define INFOSEC (information security as a career), but seems to do so from the perspective of the Rainbow series books, thus dating itself to the late 80s, and limiting the audience to the US DoD. Standard advice on researching the company you want to work for is given in chapter two. (The infosec specific advice is, again, restricted to the US federal government.) "Enumerate" usually means to collect detailed information on the basis of initial data, but chapter three provides the normal advice on building "networks" of contacts. Common resume, interviewing, and offer assessment advice is in chapter four. Part two moves on to technical skills. (When I wrote my first book, and asked for advice from people who had done it before, I received one that suggested I know what I was talking about first. At the time I was a bit offended, but I've since realized that the admonition was based in broad experience: an awful lot of people in this field really don't know what they are talking about. If you need the skills provided, you really have no business pursuing a career in information security.) Chapter five talks about security "laws;" basic security advice. (The text is not always accurate: it is not necessary for properly engineered systems to decrypt or decode passwords in order to perform access control.) Questionable suggestions on tools for an attack lab are given in chapter six, which we will charitably assume indicates an interest in security research. (The content would be of very limited practical value for a career.) Chapter seven contains an overly complex discussion of disclosure. (It may be related to the research in six, and networking in three, but otherwise wouldn't have much to do with a career search.) A few types of attacks are listed in chapter eight. Part three is supposedly about activities on the job. Chapter nine provides miscellaneous system development and project management counsel. Chapter ten is nominally about vulnerability remediation, but concentrates on providing seminars for others, and getting extra training yourself. Incident response, in chapter eleven, is apparently equated with disaster recovery and an inventory of vulnerability assessment tools. Chapter twelve finishes off with a grab bag of leftover topics. This book is full of pedestrian advice that is not terribly useful regardless of where you are in your infosec career. copyright Robert M. Slade, 2005
Add my review for InfoSec Career Hacking : Sell Your Skillz, Not Your Soul

Book description:

A Technical Guide to Landing (and Keeping) a Job in the Information Security Field Do you analyze every packet that crosses your home network just because you can? Do you spend countless hours coding applications for the sheer joy and challenge? Do you have a coin jar labeled "Trip to DEFCON/Black Hat Fund"? If you want to refine those skills to land a top InfoSec job and employer-funded trip to Vegas next year, you've come to the right place. The authors of this book have all succeeded in applying their inherent hacker skills to build successful InfoSec careers. From them you will learn about the variety of available jobs and the skills required to excel in each one. Also, the authors provide advice on how to develop the necessary management and personal skills required to hack your way to the top. * Determine What You Want to Be When You Grow Up (or at Least Get Older) See how the InfoSec field has matured, and decide if this is the life for you. * Social Engineering for Profit Use both your people and research skills to perform reconnaissance on the InfoSec job market. * Choose the Right Path Learn what certifications, work experience, and education are required (or not) to land your dream job. * There's No Place Like Home for a Test Lab! Build a fully functional test lab and attack machine in your basement to fine-tune both your attack and defense skills. * Learn the Laws of Security Master the ten guiding principles of information security to outwit malicious hackers in the real world. * Know Your Enemies Identify and understand the classes of attack: denial of service, information leakage, regular file access, misinformation, special file/database access, remote arbitrary code execution, elevation of privileges. * Feeling Vulnerable? Navigate the dangerous waters of vulnerability disclosure from nondisclosure to full disclosure. * Don't Trip the Sensors Use your l337 H4x0r skillz to assimilate into the workplace and hack the corporate ladder. * Master Incident Response Develop contingency plans to put out fires in the workplace without getting burned. * Install Your Career Rootkit Since you got there, you might as well stay there! Part I: Recon/Assessment Chapter 1: The Targets-What I Want to Be When I Grow Up (or at Least Get Older) Chapter 2: Reconnaissance: Social Engineering for Profit Chapter 3: Enumerate: Determine What's Out There Chapter 4: First Strike: Basic Tactics for Successful Exploitation Part II: Technical Skills Chapter 5: The Laws of Security Chapter 6: No Place Like /home-Creating an Attack Lab Chapter 7: Vulnerability Disclosure Chapter 8: Classes of Attack Part III: On the Job Chapter 9: Don't Trip the Sensors: Integrate and Imitate Chapter 10: Vulnerability Remediation--Work Within the System Chapter 11: Incident Response--Putting Out Fires Without Getting Burned Chapter 12: Rooting: Show Me the Money!

Search The Virtual Bookcase

Enter a title word, author name or ISBN.

The shelves in The Virtual Bookcase

Arts and architecture (25)
Biography (24)
Business and Management (119)
Cars and driving (53)
Cartoons (45)
Children's books (179)
Computer (475)
Computer history/fun (111)
Computer networks (382)
Computer programming (215)
Computer security (269)
Cook books (89)
Fantasy (154)
Fiction (446)
Health and body (70)
History (135)
Hobby (37)
Horror (65)
Humorous books (52)
Literature (57)
Operating systems (94)
Outdoor camping (162)
Outdoors (236)
Politics (83)
Privacy (61)
Psychology (55)
Religion (17)
Science (113)
Science Fiction (156)
Self-help books (55)
Technology (12)
Travel guides (307)
War and weapons (29)
World Wide Web (211)
Zen (5)
Other books (88)
Mailing list
Subscribe to booktalk, the discussion list about books at The Virtual Bookcase.
Enter your e-mail address to subscribe (you will receive an e-mail to confirm your subscription):
The Virtual Bookcase is created and maintained by Koos van den Hout. Contact e-mail webmaster@virtualbookcase.com.
Site credits
Copyright © 2000-2008 Koos van den Hout / The Virtual Bookcase Copyright and privacy statement