What is the best book to start learning ethical hacking ?
+3
A:
For stack overflowing (used by many a hack), Smashing the Stack for Fun and Profit is the definitive guide for how this works, and how to protect against it.
I also found Hacking Exposed to be a particularly good book, but it is focused primarily on network security.
Kaleb Brasee
2009-11-26 16:17:41
Hacking Exposed is an abomination. Lots of hot air, lots of outdated information, even some content stolen from web.
zoul
2009-11-26 16:50:17
+3
A:
Any of the study guides for the Certified Ethical Hacker (CEH) Certification
davidrobles
2009-11-26 16:18:35
+1
A:
You obviously intend "hacking" to mean "obtaining access to protected computers and resources without permission", which I find hard to dub "ethical". Hacking as a general (non media-polluted) term simply means playing around with or digging into the internals of something. (i.e. "I've been hacking away at this program for several hours now.") Please be aware of the difference.
As far as learning "ethical hacking" goes I recommend picking up books on securing systems, not breaking into them. Often times they will cover the same material, but from a more "ethical" perspective (Protecting data rather than stealing it.)
Toji
2009-11-26 16:19:42
He didn't say what he means yet... Maybe you should rather ask what he means instead of assuming?if he means pentesting, your description is wrong. As of your hint to read on securing systems only: That's a start, but how will you ever be sure if your systems are really secure if you do no pentesting - trying to get into the system without knowing the password (or, as it's your/your customer's system, _pretending_ not to have a password.) - looking at the system from a view and with the tools of an intruder?
Henning
2009-11-26 16:47:16
We lost the “hacking vs cracking” war with media about a decade ago, let’s get over it.
zoul
2009-11-26 16:56:41
I think the fact that I have two conflicting comments now, one telling me that I should simply accept that the word has changed meaning and the other berating me for assuming that the word means a certain thing, illustrates rather nicely why I felt it necessary to soapbox a bit on the subject. Obviously it's still a matter of contention.
Toji
2009-11-26 18:23:20
+2
A:
The book Gray Hat Hacking is a nice read. If you're a real starter, Happy Hacker is also nice (though a bit old).
Furthermore, the phrack online magazine is awesome for more specific and advanced stuff.
abyx
2009-11-26 16:24:23
+1
A:
Read Stealing the Network series by Syngress Publishing. It's a collection of stories, while fictional, the techniques, methods and software used in them is very real. It's an entertaining read, places you in the state of mind of the hacker.
hmemcpy
2009-11-26 16:24:27
+5
A:
First, an ethical hacker is often called a penetration tester, so you may have better luck using that term.
Next, there are a lot of good books on the subject.
- The Unofficial Guide to Ethical Hacking (it's a bit dated, but has a lot of good background material)
- Hacking: The Art of Exploitation
- Gray Hat Hacking: The Ethical Hacker's Handbook
Finally, another related field you might be interested in is computer forensics.
Bill the Lizard
2009-11-26 16:24:54
Gray Hat Hacking is a decent attempt. Some legal background, nice covering of the pen testing tools and thorough overflow tutorials. Some of the “programming tutorial” stuff in the book is IMHO a miss, but overall the book is good.
zoul
2009-11-26 16:52:48
A:
Euclid
2009-11-27 12:50:21
A:
Hacking: The Art of Exploitation --- This is my favorite till now. Any other similar kind of books?
72616b657368
2010-07-22 21:59:55