Adsons

    From exposition to exploit: One security book's story

    Date02 Jun 2004
    5268
    Posted ByLinuxSecurity Advisories
    Even prior to its release in May, The Shellcoder's Handbook: Discovering and Exploiting Security Holes drew attention to the exploitive nature of the narrative. In a series of e-mail exchanges, lead author Jack Koziol explains the motive behind this how-to for hackers and what's happened since it hit bookshelves. Koziol, senior instructor and security program manager at the InfoSec Institute, co-authored the book with David Litchfield, Dave Aitel, Chris Anley, Sinan Eren, Neel Mehta and Riley Hassell. . . . Even prior to its release in May, The Shellcoder's Handbook: Discovering and Exploiting Security Holes drew attention to the exploitive nature of the narrative. In a series of e-mail exchanges, lead author Jack Koziol explains the motive behind this how-to for hackers and what's happened since it hit bookshelves. Koziol, senior instructor and security program manager at the InfoSec Institute, co-authored the book with David Litchfield, Dave Aitel, Chris Anley, Sinan Eren, Neel Mehta and Riley Hassell.

    Why write this book? And why now?

    While security researchers with good intentions find most of the thousands of vulnerabilities discovered every year, an increasing number of exploitable security holes are found by persons with malicious intentions; as evidenced by the recent Microsoft ntdll.dll and Linux do_brk kernel overflows. The goal of Shellcoder's is to arm software developers and security pros with the same skills that malicious hackers already have, so they can start to identify these lurking security holes to better secure their organizations and customers.

    Comments powered by CComment

    Sidebar Ad

    LinuxSecurity Poll

    What type of mobile phone do you have?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /component/communitypolls/?task=poll.vote
    4
    radio
    [{"id":"16","title":"iPhone","votes":"8","type":"x","order":"1","pct":24.24,"resources":[]},{"id":"17","title":"Android","votes":"22","type":"x","order":"2","pct":66.67,"resources":[]},{"id":"18","title":"Other","votes":"3","type":"x","order":"3","pct":9.09,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    Advisories