Directory —
Technology —
Blog Details for "WinSecurityWar"
WinSecurityWarWinSecurityWarvisit www.winsecwar.blogspot.com for more on security and related information.-Learn security - the right way.
Articles:
1, 2
Articles
AList - Hacker Web Exploitation Uncovered - Download ebook
2007-09-23 18:18:00 This book is about vulnerabilities in Web applications, that is, scripts and programs running on a server and available using Hypertext Transfer Protocol (HTTP). It tries to give you the most comprehensive information about common mistakes made by inexperienced Web programmers. Hacker s can exploit these mistakes to obtain access to a system, gain higher privileges in it, or both. It describes common weaknesses in the writing of web pagesThis book is written from both the attacker's and security specialist's perspective. Covered is detecting, investigating, exploiting, and eliminating vulnerabilities in Web applications as well as errors such as PHP source code injection, SQL injection, and XSS. The most common vulnerabilities in PHP and Perl scripts and methods of exploiting these weaknesses are described, information on writing inter site scripts and secure systems for the hosted sites, creating secure authorization systems, and bypassing authorization. Uncovered is how attackers... More About: Download , Exploitation , Ebook
Syngress - Cyber Crime Investigations - Download ebook
2007-09-21 20:47:00 The book begins with the chapter "What is Cyber Crime ?" This introductory chapter describes the most common challenges faced by cyber investigators today. The following chapters discuss the methodologies behind cyber investigations; and frequently encountered pitfalls. Issues relating to cyber crime definitions, the electronic crime scene, computer forensics, and preparing and presenting a cyber crime investigation in court will be examined. Not only will these topics be generally be discussed and explained for the novice, but the hard questions the questions that have the power to divide this community will also be examined in a comprehensive and thoughtful manner. This book will serve as a foundational text for the cyber crime community to begin to move past current difficulties into its next evolution. * This book has been written by a retired NYPD cyber cop, who has worked many high-profile computer crime cases * Discusses the complex relationship between the public and private ... More About: Download , Ebook , Rime
McGraw Hill - 19 Deadly Sins of Software Security - Download ebook
2007-09-20 18:19:00 This book, aimed squarely at all software developers, outlines the most common and destructive coding sins and how to eradicate them from code before customers use the software. This book applies to you whether your code is written in C, C++, Java, C#, ASP, ASP.NET, Visual Basic, PHP, Perl, or JSP. It is written for Windows, Linux, Apple Mac OS X, OpenBSD, or Solaris platforms and targets rich clients, thin clients, or web users. Frankly, it doesn’t matter what operating system or programming language you use, and it doesn’t matter how secure the underlying platform is. If your code is insecure, your customers could be open to attack. Download this free e-book.Book info:19 Deadly Sins of Software Security : Programming Flaws and How to Fix Them by Michael Howard, David LeBlanc and John Viega McGraw-Hill/Osborne Publicationebook format: CHMISBN-10:0072260858 Download this ebook here:Click and Download link - 1.4MBRecommend:Always buy original paperback edition, and experience the... More About: Ebook
OReilly - Windows XP Hacks - Download ebook
2007-09-18 20:36:00 This book includes 100 hacks that are useful, frequently entertaining, and will save you countless hours at the keyboard. Whether you want to speed up your PC, customize XP's interface, hack your wired and wireless network, get more out of the Web, make better use of email, use the Registry to bend the operating system to your will, or use XP for countless other useful tasks, you'll find what you're looking for here. And each hack doesn't just show you how to do something; it also teaches why it works. Each hack is a starting point, rather than an ending point, so that you can apply the knowledge you've gained to create new hacks of your own. Book info:Windows XP Hacks By Preston Gralla O'Reilly Publicationebook format: CHMISBN-10: 0-596-00511-3 Download this ebook here:Click and Download link - 5.4MBRecommend:Always buy original paperback edition, and experience the difference.http://www.securewars.blogspot .com One stop solution for all your security learning material and... More About: Ebook , Windows Xp
McGraw Hill - Anti Hacker Tool kit - Download ebook
2007-09-15 17:36:00 This book aims to feature "best practices" for using security tools, giving background not only on how to use a tool but also on the underlying reasons of why and when to use a particular tool. Through the use of screenshots, code listings, example tool usage, and case studies, this book aims to show how each tool can be used in certain real-world situations that may mirror your own.This book is divided into four parts: multifunctional tools, tools to audit systems on the network, tools to audit the network, and tools to aid in the investigation of incidents within your infrastructure. Combining the book into these four parts, you should have the proper and field-tested tools to perform- Auditing and prevention- Detection of incidents- Investigations and response- RemediationDownload this ebook for free.Book info:Anti-Hacker Tool Kit, Third Editionby Mike Shema, Chris Davis, Aaron Philipp and David CowenMcGraw-Hill /Osborne Publicationsebook format: CHMISBN-10:0072262877Download this... More About: Ebook
OReilly - Google Hacks - Download ebook
2007-09-13 18:08:00 A large part of Google Hacks concerns itself with the Google API (the collection of capabilities that Google exposes for use by software) and other programmers' resources. For example, the authors include a simple Perl application that queries the Google engine with terms specified by the user. They also document XooMLe, which delivers Google results in XML form. In brief, this is the best compendium of Google's lesser-known capabilities available anywhere, including the Google site itself. --David WallTopics covered: How to get the most from the Google search engine by using its Web-accessible features (including product searches, image searches, news searches, and newsgroup searches) and the large collection of desktop-resident toolbars available, as well as its advanced search syntax. Other sections have to do with programming with the Google API and simple "scrapes" of results pages, while further coverage addresses how to get your Web page to feature prominently in Google key... More About: Download , Ebook , Google Hacks
hackin9 - Dangerous Google Searching for secrets - Download ebook
2007-09-08 09:34:00 Google serves some 80 percent of all search queries on the Internet, making it by far the most popular search engine. Its popularity is due not only to excellent search effectiveness, but also extensive querying capabilities. However, we should also remember that the Internet is a highly dynamic medium, so the results presented by Google are not always up-to-date – some search results might be stale, while other relevant resources might not yet have been visited by Googlebot (the automatic script that browses and indexes Web resources for Google).Tables in this book presents a summary of the most important and most useful query operators along with their descriptions, while Figures shows document locations referred to by the operators when applied to Web searches. Of course, this is just a handful of examples – skillful Google querying can lead to much more interesting results. Hunting for Prey Google makes it possible to reach not just publicly available Internet resources, but... More About: Google , Download , Ebook , Secrets , Searching
A Wesley - Find The Bug A Book Of Incorrect Programs - Download ebook
2007-09-08 09:17:00 Bug hunting is an art, and you need to be a master. Get Find the Bug, and you'll become one. Long-time Microsoft programmer Adam Barr presents 50 programs, each with exactly one bug. Your assignment: find it. As you do, Barr will teach you how to "think like your processor"... anticipating exactly how code will behave, even without running it. You'll learn better ways to read code, understand it -- and above all, improve it. Whether you're building new systems or maintaining someone else's, you'll find bugs earlier, faster, with less frustration... and write cleaner code to begin with. - Presents "bugged" programs in C, Java, Python, Perl, and x86 assembly language, with carefully explained solutions- Includes language overviews to help you debug all 50 examples, even if you don't know the language- Shows how to look past the "surface" of code to uncover its hidden internal logicOffers practical guidance on analyzing programs, including specific inputs to test- Presents a wi... More About: Programs , Download , Ebook , Book
Syngress - Mission Critical Internet Security - Download ebook
2007-09-07 19:31:00 The growth of the Internet and its reach into the fabric of business and personal life has outdistanced most organizations' ability to protect the confidentiality and integrity of information. The increased exposure and the constant escalation of threats to network security have increased the need for effective controls that can restore availability, confidentiality, and integrity to information systems. Mission Critical! Internet Security shows how security can be provided in TCP/IP at any layer, and outlines the advantages and disadvantages of each approach. This book will answer the questions you have about Internet Security , including:- If I use protocol switching on my network, what protocol should I use in place of IP?- Should I be placing my VPN gateway at the same level as my firewall?- Can I use IPSec to secure communications with my Win 9x machines?- Are there back doors in PGP?- Would a firewall or other security product interfere with the IDS?- How does SOCKS Proxy diff... More About: Download , Ebook
Addison Wesley - File System Forensic Analysis - Download ebook
2007-09-03 17:28:00 Understanding how file systems work is one of the most technically challenging concepts for a digital investigator because there exists little documentation. Now, security expert Brian Carrier has written the definitive reference for everyone who wants to understand and be able to testify about how file system analysis is performed. Carrier begins with an overview of investigation and computer foundations and then gives an authoritative, comprehensive, and illustrated overview of contemporary volume and file systems: Crucial information for discovering hidden evidence, recovering deleted data, and validating your tools. Along the way, he describes data structures, analyzes example disk images, provides advanced investigation scenarios, and uses today's most valuable open source file system analysis tools—including tools he personally developed. Coverage includes in fact everything that an forensic analysts would be interested in knowing in depth.Book info:File System Forensic Ana... More About: Analysis , Download , Ebook
Addson Wesley - The Art of Computer Virus Research and Defense - Download e
2007-09-03 17:05:00 Symantec's chief antivirus researcher has written the definitive guide to contemporary virus threats, defense techniques, and analysis tools. Unlike most books on computer viruses, The Art of Computer Virus Research and Defense is a reference written strictly for white hats: IT and security professionals responsible for protecting their organizations against malware. Peter Szor systematically covers everything you need to know, including virus behavior and classification, protection strategies, antivirus and worm-blocking techniques, and much more.Szor presents the state-of-the-art in both malware and protection, providing the full technical detail that professionals need to handle increasingly complex attacks. Along the way, he provides extensive information on code metamorphism and other emerging techniques, so you can anticipate and prepare for future threats.Book info:The Art of Computer Virus Research and Defenseby Peter SzorAddison Wesley Publicationebook format: CHMISBN-10: ... More About: Download
Prentice Hall - Security in Computing 4th edition - Download
2007-09-02 01:45:00 For years, IT and security professionals and students have turned to Security in Computing as the definitive guide to information about computer security attacks and countermeasures. In their new fourth edition, Charles P. Pfleeger and Shari Lawrence Pfleeger have thoroughly updated their classic guide to reflect today's newest technologies, standards, and trends.Security in Computing, Fourth Edition , goes beyond technology, covering crucial management issues faced in protecting infrastructure and information. This edition contains an all-new chapter on the economics of cybersecurity, explaining ways to make a business case for security investments. Another new chapter addresses privacy--from data mining and identity theft, to RFID and e-voting.Book info:Security in Computing, Fourth Edition By Charles P. Pfleeger - Pfleeger Consulting Group, Shari Lawrence Pfleeger - RAND Corporation ......................................... ...... Publisher: Prentice Hall Pub Date: October 13, 2... More About: Download
CRC press - Information Security management Handbook - Download
2007-08-31 13:52:00 The landscape of information security has changed. The bad news: It is more nebulous than ever before. No longer can chief information security officers work solely within the confines of their organizations’security policies or their industry-specific regulatory mandates and feel comfortable that the depth and efficacy of their program will not be second guessed. As current events unfold, established institutions such as Bank of America, Lexis-Nexis, and Choicepoint watch as their reputations come into question and their names are plastered on the front pages of the national media. Regardless of the incidental details, be they business process fraud or third-party errors and omissions, all of the events to date have been publicized as “security breaches.” Read about this and more in this book.Book info:Information Security Management Handbook, fifth edition, volume 3by Harold F. Tipton, Micki KrauseAuerbach PublicationISBN-10: 0-8493-9561-5ISBN-13: 978-0-8493-9561-1Download t... More About: Press
Wiley - CISSP preparation guide - Download
2007-08-26 10:28:00 The need to protect information resources has produced a demand for information systems security professionals. Along with this demand came a need to ensure that these professionals possess the knowledge to perform the required job functions. To address this need, the Certified Information Systems Security Professional (CISSP) certification was developed. This certification guarantees to all parties that the certified individual meets standard criteria of knowledge and continues to upgrade that knowledge in the field of information systems security. The CISSP initiative also serves to enhance the recognition and reputation of the field of information security. This book discuses all the essentials concepts of security in considerable depth. This book is must read for all those trying for (ISC)2 certification.Book info:The CISSP prep guide: mastering the ten domains of computer securityRonald L. Krutz,Russell Dean Vines.John Wiley & sons Inc. PublishingISBN 0-471-41356-9Download this... More About: Guide , Preparation , Guid
Que - Exam Cram 2 CISSP practice questions - Download
2007-08-25 13:24:00 The aim of this book is to provide you with practice questions complete with answers an explanations that will help you learn, drill and review for CISSP certification exam.Topics covered:Access Control, Telecommunications and Network security, Physical Security, Cryptography, Security Management, law Investigation and ethics, Operations Security, Security Architecture and models, Application Security, Business Continuity and planning.Book info:Exam Cram 2 - CISSP practice questionsby Michael GreggQue PublicationISBN: 0-7897-3305-6Download this ebook here:Click and Download - 1.2MBRecommend:Always buy original paperback edition, and experience the difference.http://www.securewars.blogspot .com One stop solution for all your security learning material and information. More About: Questions , Practice
Wiley - Integarted Auditing of ERP Systems - Download
More articles from this author:2007-08-25 13:08:00 Enterprise Resource Planning (ERP) System implementation is both an art and science that consists of planning, implementation, and ongoing maintenance. This methodology is designed to automate the drudgery of implementation and provide organized approaches to problem solving by listing, diagramming, and documenting all steps. Structured methodologies help to standardize and systemize ERP implementation and maintenance by approaching them as an engineering discipline rather than as whims of individual software developers. It is essential to understand structured methodologies in the implementation of ERP systems.Book info:Integrated auditing of ERP systems by Yusufali F. Musaji.John Wiley & Sons Inc. PublishingISBN 0-471-23518-0Download this ebook:Click and Download - 2.91MBRecommend:Always buy original paperback edition, and experience the difference.http://www.securewars.blogspot .com One stop solution for all your security learning material and information. More About: Systems , Stem 1, 2 |
|
