Rootkits: Subverting the Windows Kernel (Addison-Wesley Software Security Series)
by Greg Hoglund, Jamie Butler
List Price:
Our Price: $20.96
You Save: $34.03 (62%)
Availability: Usually ships in 1-2 business days
Category: Book
See more book details and other editions
Compare Prices for Rootkits: Subverting the Windows Kernel (Addison-Wesley Software Security Series)
Book Summary Information
Author: Greg Hoglund, Jamie ButlerEdition: Paperback
Audio: English (Original Language); English (Unknown); English (Published)
Published: 2005-08-01
ISBN: 0321294319
Number of pages: 352
Publisher: Addison-Wesley Professional
Book Reviews of Rootkits: Subverting the Windows Kernel (Addison-Wesley Software Security Series)
Book Review: Excellent intermediate/advanced security book
Summary: 5 Stars
I finally picked up this book last year and throughoughly enjoyed it. I keep referring to it because the examples build up to the point of qualified proof of concept. The examples also are different enough from the other ones that are easy to find with Google, so between the two you get a complete view of the vulnerable issue.
The book's title should be obvious enough; this is NOT a book of defenses. However, if you understand these attacks you will be better equiped to deal with them when they happen. This book is no replacement for hands-on training in person with a qualified instructor such as at the SANS Institute, but it is an excellent supplement.
Summary of Rootkits: Subverting the Windows Kernel (Addison-Wesley Software Security Series)
"Rootkits are the ultimate backdoor, giving hackers ongoing and virtually undetectable access to the systems they exploit. Now, two of the worlds leading experts have written the first comprehensive guide to rootkits: what they are, how they work, how to build them, and how to detect them. Rootkit.com's Greg Hoglund and James Butler created and teach Black Hat's legendary course in rootkits. In this book, they reveal never-before-told offensive aspects of rootkit technology--learn how attackers can get in and stay in for years, without detection.Hoglund and Butler show exactly how to subvert the Windows XP and Windows 2000 kernels, teaching concepts that are easily applied to virtually any modern operating system, from Windows Server 2003 to Linux and UNIX. Using extensive downloadable examples, they teach rootkit programming techniques that can be used for a wide range of software, from white hat security tools to operating system drivers and debuggers.
After reading this book, readers will be able to
- Understand the role of rootkits in remote command/control and software eavesdropping
- Build kernel rootkits that can make processes, files, and directories invisible
- Master key rootkit programming techniques, including hooking, runtime patching, and directly manipulating kernel objects
- Work with layered drivers to implement keyboard sniffers and file filters
- Detect rootkits and build host-based intrusion prevention software that resists rootkit attacks
Visit rootkit.com for code and programs from this book. The site also contains enhancements to the book's text, such as up-to-the-minute information on rootkits available nowhere else.
"
Encryption Books
- Computers & Internet > Web Development > Security & Encryption
- Business & Culture > Privacy
- Networking > Network Security
- Microsoft > Operating Systems > Windows - General
- Home Computing > Internet
- General
- Operating Systems > General
- Certification Central > Exams
- Business & Investing > Industries & Professions > E-commerce > General
Book Subjects
- Arts & Photography
- Audiobooks on Cassette
- Audiobooks on CD
- Biographies & Memoirs
- Business & Investing
- Children's Books
- Comics & Graphic Novels
- Computers & Internet
- Cooking, Food & Wine
- e-Books
- Engineering
- Entertainment
- Gay & Lesbian
- Health, Mind & Body
- History
- Home & Garden
- Horror
- Law
- Literature & Fiction
- Medicine
- Mystery & Thrillers
- Nonfiction
- Outdoors & Nature
- Parenting & Families
- Professional & Technical
- Reference
- Religion & Spirituality
- Romance
- Science
- Science Fiction & Fantasy
- Sports
- Teens
- Travel
Most talked about in Crash Dump Analysis and Debugging
Essential COM (DevelopMentor Series)by Don Box
Addison-Wesley Professional; Published: 1998-01-01; Paperback; Book
Best price: $25.80
Price in other shops:
Windows NT/ 2000 Native API Reference (Circle)by Gary Nebbett
Sams; Published: 2000-02-20; Paperback; Book
Best price: $38.50
Price in other shops:
Windows NT File System Internals (OSR Classic Reprints)by Rajeev Nagar
OSR Press; Published: 2006; Paperback; Book
Inside the C++ Object Modelby Stanley B. Lippman
Addison-Wesley Professional; Published: 1996-05-13; Paperback; Book
Best price: $34.00
Price in other shops:
Hacker Disassembling Uncovered (Uncovered series)by Kris Kaspersky
A-List Publishing; Published: 2007-02-01; Paperback; Book
Price in other shops:
Windows System Programming (3rd Edition) (Addison-Wesley Microsoft Technology Series)by Johnson M. Hart
Addison-Wesley Professional; Published: 2004-11-05; Hardcover; Book
Best price: $39.88
Price in other shops:
Developing Windows NT Device Drivers: A Programmer's Handbook (paperback)by Edward N. Dekker, Joseph M. Newcomer
Addison-Wesley Professional; Published: 1999-04-09; Paperback; Book
Best price: $65.34
Price in other shops:
Programming the Microsoft Windows Driver Model, Second Editionby Walter Oney
MICROSOFT CORPORATION; Microsoft Press; Published: 2003-01-16; Paperback; Book
Best price: $19.99
Price in other shops:
Rootkits: Subverting the Windows Kernel (Addison-Wesley Software Security Series)by Greg Hoglund, Jamie Butler
Addison-Wesley Professional; Published: 2005-08-01; Paperback; Book
Best price: $16.98
Price in other shops:
Reversing: Secrets of Reverse Engineeringby Eldad Eilam
Wiley; Published: 2005-04-15; Paperback; Book
Best price: $19.93
Price in other shops:
Similar Books and other products
Exploiting Online Games: Cheating Massively Distributed Systems (Addison-Wesley Software Security Series)by Greg Hoglund, Gary McGraw
Addison-Wesley Professional; Published: 2007-07-19; Paperback; Book
Best price: $26.13
Price in other shops:
Advanced Windows Debugging (Addison-Wesley Microsoft Technology Series)by Mario Hewardt, Daniel Pravat
Addison-Wesley Professional; Published: 2007-11-08; Paperback; Book
Best price: $46.73
Price in other shops:
The Web Application Hacker's Handbook: Discovering and Exploiting Security Flawsby Dafydd Stuttard, Marcus Pinto
Wiley; Published: 2007-10-22; Paperback; Book
Best price: $26.68
Price in other shops:
Exploiting Software: How to Break Code (Addison-Wesley Software Security Series)by Greg Hoglund, Gary McGraw
Addison-Wesley Professional; Published: 2004-02-27; Paperback; Book
Best price: $23.97
Price in other shops:
The Art of Computer Virus Research and Defense (Symantec Press)by Peter Szor
Addison-Wesley Professional; Published: 2005-02-13; Paperback; Book
Best price: $30.19
Price in other shops:
File System Forensic Analysisby Brian Carrier
Addison-Wesley Professional; Published: 2005-03-27; Paperback; Book
Best price: $34.94
Price in other shops:
The Shellcoder's Handbook: Discovering and Exploiting Security Holesby Chris Anley, John Heasman, Felix? Lindner, Gerardo Richarte
Wiley; Published: 2007-08-20; Paperback; Book
Best price: $14.14
Price in other shops:
Hacking: The Art of Exploitat 2nd Editionby Jon Erickson
No Starch Press; Published: 2008-02-04; Paperback; Book
Best price: $28.43
Price in other shops:
Microsoft Windows Internals (4th Edition): Microsoft Windows Server 2003, Windows XP, and Windows 2000by Mark E. Russinovich, David A. Solomon
Microsoft Press; Published: 2005-01-05; Hardcover; Book
Best price: $29.00
Price in other shops:
Reversing: Secrets of Reverse Engineeringby Eldad Eilam
Wiley; Published: 2005-04-15; Paperback; Book
Best price: $21.02
Price in other shops: