{"product_id":"hacking-the-hacker-isbn-9781119396215","title":"Hacking the Hacker","description":"\u003cp\u003e\u003cb\u003eMeet the world's top ethical hackers and explore the tools of the trade\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\u003ci\u003eHacking the Hacker\u003c\/i\u003e takes you inside the world of cybersecurity to show you what goes on behind the scenes, and introduces you to the men and women on the front lines of this technological arms race. Twenty-six of the world's top white hat hackers, security researchers, writers, and leaders, describe what they do and why, with each profile preceded by a no-experience-necessary explanation of the relevant technology.  Dorothy Denning discusses advanced persistent threats, Martin Hellman describes how he helped invent public key encryption, Bill Cheswick talks about firewalls, Dr. Charlie Miller talks about hacking cars, and other cybersecurity experts from around the world detail the threats, their defenses, and the tools and techniques they use to thwart the most advanced criminals history has ever seen. Light on jargon and heavy on intrigue, this book is designed to be an introduction to the field; final chapters include a guide for parents of young hackers, as well as the Code of Ethical Hacking to help you start your own journey to the top.\u003c\/p\u003e \u003cp\u003eCybersecurity is becoming increasingly critical at all levels, from retail businesses all the way up to national security. This book drives to the heart of the field, introducing the people and practices that help keep our world secure.\u003c\/p\u003e \u003cul\u003e \u003cli\u003eGo deep into the world of white hat hacking to grasp just how critical cybersecurity is\u003c\/li\u003e \u003cli\u003eRead the stories of some of the world's most renowned computer security experts\u003c\/li\u003e \u003cli\u003eLearn how hackers do what they do—no technical expertise necessary\u003c\/li\u003e \u003cli\u003eDelve into social engineering, cryptography, penetration testing, network attacks, and more\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003eAs a field, cybersecurity is large and multi-faceted—yet not historically diverse. With a massive demand for qualified professional that is only going to grow, opportunities are endless. \u003ci\u003eHacking the Hacker\u003c\/i\u003e shows you why you should give the field a closer look.\u003c\/p\u003e \u003cp\u003eForeword xxxi\u003c\/p\u003e \u003cp\u003eIntroduction xxxiii\u003c\/p\u003e \u003cp\u003e\u003cb\u003e1 What Type of Hacker Are You? 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eMost Hackers Aren’t Geniuses 2\u003c\/p\u003e \u003cp\u003eDefenders Are Hackers Plus 3\u003c\/p\u003e \u003cp\u003eHackers Are Special 3\u003c\/p\u003e \u003cp\u003eHackers Are Persistent 4\u003c\/p\u003e \u003cp\u003eHacker Hats 4\u003c\/p\u003e \u003cp\u003e\u003cb\u003e2 How Hackers Hack 9\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Secret to Hacking 10\u003c\/p\u003e \u003cp\u003eThe Hacking Methodology 11\u003c\/p\u003e \u003cp\u003eHacking Is Boringly Successful 20\u003c\/p\u003e \u003cp\u003eAutomated Malware as a Hacking Tool 20\u003c\/p\u003e \u003cp\u003eHacking Ethically 21\u003c\/p\u003e \u003cp\u003e\u003cb\u003e3 Profile: \u003ci\u003eBruce Schneier\u003c\/i\u003e   23\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eBruce Schneier\u003c\/i\u003e 26\u003c\/p\u003e \u003cp\u003e\u003cb\u003e4 Social Engineering   27\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eSocial Engineering Methods 27\u003c\/p\u003e \u003cp\u003ePhishing 27\u003c\/p\u003e \u003cp\u003eTrojan Horse Execution 28\u003c\/p\u003e \u003cp\u003eOver the Phone 28\u003c\/p\u003e \u003cp\u003ePurchase Scams 28\u003c\/p\u003e \u003cp\u003eIn-Person 29\u003c\/p\u003e \u003cp\u003eCarrot or Stick 29\u003c\/p\u003e \u003cp\u003eSocial Engineering Defenses 30\u003c\/p\u003e \u003cp\u003eEducation 30\u003c\/p\u003e \u003cp\u003eBe Careful of Installing Software from Third-Party Websites 30\u003c\/p\u003e \u003cp\u003eEV Digital Certificates   31\u003c\/p\u003e \u003cp\u003eGet Rid of Passwords 31\u003c\/p\u003e \u003cp\u003eAnti–Social Engineering Technologies 31\u003c\/p\u003e \u003cp\u003e\u003cb\u003e5 Profile: \u003ci\u003eKevin Mitnick\u003c\/i\u003e   33\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eKevin Mitnick \u003c\/i\u003e37\u003c\/p\u003e \u003cp\u003e\u003cb\u003e6 Software Vulnerabilities   39\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eNumber of Software Vulnerabilities 39\u003c\/p\u003e \u003cp\u003eWhy Are Software Vulnerabilities Still a Big Problem? 40\u003c\/p\u003e \u003cp\u003eDefenses Against Software Vulnerabilities 41\u003c\/p\u003e \u003cp\u003eSecurity Development Lifecycle 41\u003c\/p\u003e \u003cp\u003eMore Secure Programming Languages 42\u003c\/p\u003e \u003cp\u003eCode and Program Analysis 42\u003c\/p\u003e \u003cp\u003eMore Secure Operating Systems 42\u003c\/p\u003e \u003cp\u003eThird-Party Protections and Vendor Add-Ons 42\u003c\/p\u003e \u003cp\u003ePerfect Software Won’t Cure All Ills 43\u003c\/p\u003e \u003cp\u003e\u003cb\u003e7 Profile: \u003ci\u003eMichael Howard\u003c\/i\u003e 45\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eMichael Howard\u003c\/i\u003e 49\u003c\/p\u003e \u003cp\u003e\u003cb\u003e8 Profile: \u003ci\u003eGary McGraw\u003c\/i\u003e 51\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eGary McGraw\u003c\/i\u003e 54\u003c\/p\u003e \u003cp\u003e\u003cb\u003e9 Malware   55\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eMalware Types 55\u003c\/p\u003e \u003cp\u003eNumber of Malware Programs 56\u003c\/p\u003e \u003cp\u003eMostly Criminal in Origin 57\u003c\/p\u003e \u003cp\u003eDefenses Against Malware 58\u003c\/p\u003e \u003cp\u003eFully Patched Software 58\u003c\/p\u003e \u003cp\u003eTraining 58\u003c\/p\u003e \u003cp\u003eAnti-Malware Software 58\u003c\/p\u003e \u003cp\u003eApplication Control Programs 59\u003c\/p\u003e \u003cp\u003eSecurity Boundaries 59\u003c\/p\u003e \u003cp\u003eIntrusion Detection 59\u003c\/p\u003e \u003cp\u003e\u003cb\u003e10 Profile: \u003ci\u003eSusan Bradley\u003c\/i\u003e 61\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on Susan Bradley 63\u003c\/p\u003e \u003cp\u003e\u003cb\u003e11 Profile: \u003ci\u003eMark Russinovich\u003c\/i\u003e   65\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More on \u003ci\u003eMark Russinovich\u003c\/i\u003e 68\u003c\/p\u003e \u003cp\u003e\u003cb\u003e12 Cryptography 69\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWhat Is Cryptography? 69\u003c\/p\u003e \u003cp\u003eWhy Can’t Attackers Just Guess All the Possible Keys? 70\u003c\/p\u003e \u003cp\u003eSymmetric Versus Asymmetric Keys 70\u003c\/p\u003e \u003cp\u003ePopular Cryptography 70\u003c\/p\u003e \u003cp\u003eHashes 71\u003c\/p\u003e \u003cp\u003eCryptographic Uses 72\u003c\/p\u003e \u003cp\u003eCryptographic Attacks 72\u003c\/p\u003e \u003cp\u003eMath Attacks 72\u003c\/p\u003e \u003cp\u003eKnown Ciphertext\/Plaintext 73\u003c\/p\u003e \u003cp\u003eSide Channel Attacks 73\u003c\/p\u003e \u003cp\u003eInsecure Implementations 73\u003c\/p\u003e \u003cp\u003e\u003cb\u003e13 Profile: \u003ci\u003eMartin Hellman\u003c\/i\u003e   75\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eMartin Hellman\u003c\/i\u003e 79\u003c\/p\u003e \u003cp\u003e\u003cb\u003e14 Intrusion Detection\/APTs   81\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eTraits of a Good Security Event Message 82\u003c\/p\u003e \u003cp\u003eAdvanced Persistent Threats (APTs) 82\u003c\/p\u003e \u003cp\u003eTypes of Intrusion Detection 83\u003c\/p\u003e \u003cp\u003eBehavior-Based 83\u003c\/p\u003e \u003cp\u003eSignature-Based 84\u003c\/p\u003e \u003cp\u003eIntrusion Detection Tools and Services 84\u003c\/p\u003e \u003cp\u003eIntrusion Detection\/Prevention Systems 84\u003c\/p\u003e \u003cp\u003eEvent Log Management Systems 85\u003c\/p\u003e \u003cp\u003eDetecting Advanced Persistent Threats (APTs) 85\u003c\/p\u003e \u003cp\u003e\u003cb\u003e15 Profile: \u003ci\u003eDr. Dorothy E. Denning\u003c\/i\u003e   87\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eDr Dorothy E Denning\u003c\/i\u003e 90\u003c\/p\u003e \u003cp\u003e\u003cb\u003e16 Profile: \u003ci\u003eMichael Dubinsky\u003c\/i\u003e 91\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eMichael Dubinsky\u003c\/i\u003e 93\u003c\/p\u003e \u003cp\u003e\u003cb\u003e17 Firewalls 95\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWhat Is a Firewall? 95\u003c\/p\u003e \u003cp\u003eThe Early History of Firewalls 95\u003c\/p\u003e \u003cp\u003eFirewall Rules 97\u003c\/p\u003e \u003cp\u003eWhere Are Firewalls? 97\u003c\/p\u003e \u003cp\u003eAdvanced Firewalls 98\u003c\/p\u003e \u003cp\u003eWhat Firewalls Protect Against 98\u003c\/p\u003e \u003cp\u003e\u003cb\u003e18 Profile: \u003ci\u003eWilliam Cheswick\u003c\/i\u003e   101\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eWilliam Cheswick\u003c\/i\u003e 105\u003c\/p\u003e \u003cp\u003e\u003cb\u003e19 Honeypots 107\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWhat Is a Honeypot? 107\u003c\/p\u003e \u003cp\u003eInteraction 108\u003c\/p\u003e \u003cp\u003eWhy Use a Honeypot? 108\u003c\/p\u003e \u003cp\u003eCatching My Own Russian Spy 109\u003c\/p\u003e \u003cp\u003eHoneypot Resources to Explore 110\u003c\/p\u003e \u003cp\u003e\u003cb\u003e20 Profile: \u003ci\u003eLance Spitzner\u003c\/i\u003e   111\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eLance Spitzner\u003c\/i\u003e 114\u003c\/p\u003e \u003cp\u003e\u003cb\u003e21 Password Hacking   115\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eAuthentication Components 115\u003c\/p\u003e \u003cp\u003ePasswords 116\u003c\/p\u003e \u003cp\u003eAuthentication Databases 116\u003c\/p\u003e \u003cp\u003ePassword Hashes   116\u003c\/p\u003e \u003cp\u003eAuthentication Challenges   116\u003c\/p\u003e \u003cp\u003eAuthentication Factors   117\u003c\/p\u003e \u003cp\u003eHacking Passwords   117\u003c\/p\u003e \u003cp\u003ePassword Guessing 117\u003c\/p\u003e \u003cp\u003ePhishing   118\u003c\/p\u003e \u003cp\u003eKeylogging 118\u003c\/p\u003e \u003cp\u003eHash Cracking   118\u003c\/p\u003e \u003cp\u003eCredential Reuse 119\u003c\/p\u003e \u003cp\u003eHacking Password Reset Portals   119\u003c\/p\u003e \u003cp\u003ePassword Defenses   119\u003c\/p\u003e \u003cp\u003eComplexity and Length 120\u003c\/p\u003e \u003cp\u003eFrequent Changes with No Repeating 120\u003c\/p\u003e \u003cp\u003eNot Sharing Passwords Between Systems 120\u003c\/p\u003e \u003cp\u003eAccount Lockout 121\u003c\/p\u003e \u003cp\u003eStrong Password Hashes 121\u003c\/p\u003e \u003cp\u003eDon’t Use Passwords   121\u003c\/p\u003e \u003cp\u003eCredential Theft Defenses 121\u003c\/p\u003e \u003cp\u003eReset Portal Defenses 122\u003c\/p\u003e \u003cp\u003e\u003cb\u003e22 Profile: \u003ci\u003eDr. Cormac Herley\u003c\/i\u003e   123\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eDr. Cormac Herley\u003c\/i\u003e 126\u003c\/p\u003e \u003cp\u003e\u003cb\u003e23 Wireless Hacking   127\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Wireless World 127\u003c\/p\u003e \u003cp\u003eTypes of Wireless Hacking   127\u003c\/p\u003e \u003cp\u003eAttacking the Access Point 128\u003c\/p\u003e \u003cp\u003eDenial of Service 128\u003c\/p\u003e \u003cp\u003eGuessing a Wireless Channel Password 128\u003c\/p\u003e \u003cp\u003eSession Hijacking 128\u003c\/p\u003e \u003cp\u003eStealing Information 129\u003c\/p\u003e \u003cp\u003ePhysically Locating a User 129\u003c\/p\u003e \u003cp\u003eSome Wireless Hacking Tools 129\u003c\/p\u003e \u003cp\u003eAircrack-Ng 130\u003c\/p\u003e \u003cp\u003eKismet 130\u003c\/p\u003e \u003cp\u003eFern Wi-Fi Hacker 130\u003c\/p\u003e \u003cp\u003eFiresheep 130\u003c\/p\u003e \u003cp\u003eWireless Hacking Defenses 130\u003c\/p\u003e \u003cp\u003eFrequency Hopping 130\u003c\/p\u003e \u003cp\u003ePredefined Client Identification   131\u003c\/p\u003e \u003cp\u003eStrong Protocols 131\u003c\/p\u003e \u003cp\u003eLong Passwords   131\u003c\/p\u003e \u003cp\u003ePatching Access Points   131\u003c\/p\u003e \u003cp\u003eElectromagnetic Shielding   131\u003c\/p\u003e \u003cp\u003e\u003cb\u003e24 Profile: \u003ci\u003eThomas d’Otreppe de Bouvette\u003c\/i\u003e   133\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eThomas d’Otreppe de Bouvette\u003c\/i\u003e 135\u003c\/p\u003e \u003cp\u003e\u003cb\u003e25 Penetration Testing   137\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eMy Penetration Testing Highlights   137\u003c\/p\u003e \u003cp\u003eHacked Every Cable Box in the Country   137\u003c\/p\u003e \u003cp\u003eSimultaneously Hacked a Major Television Network and Pornography 138\u003c\/p\u003e \u003cp\u003eHacked a Major Credit Card Company   138\u003c\/p\u003e \u003cp\u003eCreated a Camera Virus   139\u003c\/p\u003e \u003cp\u003eHow to Be a Pen Tester   139\u003c\/p\u003e \u003cp\u003eHacker Methodology   139\u003c\/p\u003e \u003cp\u003eGet Documented Permission First 140\u003c\/p\u003e \u003cp\u003eGet a Signed Contract 140\u003c\/p\u003e \u003cp\u003eReporting 140\u003c\/p\u003e \u003cp\u003eCertifications   141\u003c\/p\u003e \u003cp\u003eBe Ethical 145\u003c\/p\u003e \u003cp\u003eMinimize Potential Operational Interruption 145\u003c\/p\u003e \u003cp\u003e\u003cb\u003e26 Profile: \u003ci\u003eAaron Higbee\u003c\/i\u003e   147\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eAaron Higbee\u003c\/i\u003e 149\u003c\/p\u003e \u003cp\u003e\u003cb\u003e27 Profile: \u003ci\u003eBenild Joseph\u003c\/i\u003e   151\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eBenild Joseph\u003c\/i\u003e   153\u003c\/p\u003e \u003cp\u003e\u003cb\u003e28 DDoS Attacks 155\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eTypes of DDoS Attacks   155\u003c\/p\u003e \u003cp\u003eDenial of Service 155\u003c\/p\u003e \u003cp\u003eDirect Attacks 156\u003c\/p\u003e \u003cp\u003eReflection Attacks 156\u003c\/p\u003e \u003cp\u003eAmplification 156\u003c\/p\u003e \u003cp\u003eEvery Layer in the OSI Model   157\u003c\/p\u003e \u003cp\u003eEscalating Attacks 157\u003c\/p\u003e \u003cp\u003eUpstream and Downsteam Attacks 157\u003c\/p\u003e \u003cp\u003eDDoS Tools and Providers 158\u003c\/p\u003e \u003cp\u003eTools 158\u003c\/p\u003e \u003cp\u003eDDoS as a Service 158\u003c\/p\u003e \u003cp\u003eDDoS Defenses   159\u003c\/p\u003e \u003cp\u003eTraining   159\u003c\/p\u003e \u003cp\u003eStress Testing   159\u003c\/p\u003e \u003cp\u003eAppropriate Network Configuration 159\u003c\/p\u003e \u003cp\u003eEngineer Out Potential Weak Points   159\u003c\/p\u003e \u003cp\u003eAnti-DDoS Services 160\u003c\/p\u003e \u003cp\u003e\u003cb\u003e29 Profile: \u003ci\u003eBrian Krebs\u003c\/i\u003e 161\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eBrian Krebs\u003c\/i\u003e 164\u003c\/p\u003e \u003cp\u003e\u003cb\u003e30 Secure OS 165\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHow to Secure an Operating System 166\u003c\/p\u003e \u003cp\u003eSecure-Built OS 166\u003c\/p\u003e \u003cp\u003eSecure Guidelines 168\u003c\/p\u003e \u003cp\u003eSecure Configuration Tools 169\u003c\/p\u003e \u003cp\u003eSecurity Consortiums 169\u003c\/p\u003e \u003cp\u003eTrusted Computing Group 169\u003c\/p\u003e \u003cp\u003eFIDO Alliance 169\u003c\/p\u003e \u003cp\u003e\u003cb\u003e31 Profile: \u003ci\u003eJoanna Rutkowska\u003c\/i\u003e 171\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eJoanna Rutkowska\u003c\/i\u003e   173\u003c\/p\u003e \u003cp\u003e\u003cb\u003e32 Profile: \u003ci\u003eAaron Margosis\u003c\/i\u003e   175\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eAaron Margosis\u003c\/i\u003e   179\u003c\/p\u003e \u003cp\u003e\u003cb\u003e33 Network Attacks   181\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eTypes of Network Attacks 181\u003c\/p\u003e \u003cp\u003eEavesdropping 182\u003c\/p\u003e \u003cp\u003eMan-in-the-Middle Attacks 182\u003c\/p\u003e \u003cp\u003eDistributed Denial-of-Service Attacks 183\u003c\/p\u003e \u003cp\u003eNetwork Attack Defenses 183\u003c\/p\u003e \u003cp\u003eDomain Isolation 183\u003c\/p\u003e \u003cp\u003eVirtual Private Networks 183\u003c\/p\u003e \u003cp\u003eUse Secure Protocols and Applications 183\u003c\/p\u003e \u003cp\u003eNetwork Intrusion Detection 184\u003c\/p\u003e \u003cp\u003eAnti-DDoS Defenses 184\u003c\/p\u003e \u003cp\u003eVisit Secure Web Sites and Use Secure Services 184\u003c\/p\u003e \u003cp\u003e\u003cb\u003e34 Profile: \u003ci\u003eLaura Chappell\u003c\/i\u003e 185\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eLaura Chappell\u003c\/i\u003e 188\u003c\/p\u003e \u003cp\u003e\u003cb\u003e35 IoT Hacking 189\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHow Do Hackers Hack IoT? 189\u003c\/p\u003e \u003cp\u003eIoT Defenses 190\u003c\/p\u003e \u003cp\u003e\u003cb\u003e36 Profile: \u003ci\u003eDr. Charlie Miller\u003c\/i\u003e 193\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eDr. Charlie Miller\u003c\/i\u003e 198\u003c\/p\u003e \u003cp\u003e\u003cb\u003e37 Policy and Strategy 201\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eStandards 201\u003c\/p\u003e \u003cp\u003ePolicies 202\u003c\/p\u003e \u003cp\u003eProcedures 203\u003c\/p\u003e \u003cp\u003eFrameworks 203\u003c\/p\u003e \u003cp\u003eRegulatory Laws 203\u003c\/p\u003e \u003cp\u003eGlobal Concerns 203\u003c\/p\u003e \u003cp\u003eSystems Support 204\u003c\/p\u003e \u003cp\u003e\u003cb\u003e38 Profile: \u003ci\u003eJing de Jong-Chen\u003c\/i\u003e 205\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eJing de Jong-Chen\u003c\/i\u003e 209\u003c\/p\u003e \u003cp\u003e\u003cb\u003e39 Threat Modeling  211\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWhy Threat Model?  211\u003c\/p\u003e \u003cp\u003eThreat Modeling Models 212\u003c\/p\u003e \u003cp\u003eThreat Actors  213\u003c\/p\u003e \u003cp\u003eNation-States  213\u003c\/p\u003e \u003cp\u003eIndustrial Hackers  213\u003c\/p\u003e \u003cp\u003eFinancial Crime 213\u003c\/p\u003e \u003cp\u003eHacktivists 214\u003c\/p\u003e \u003cp\u003eGamers 214\u003c\/p\u003e \u003cp\u003eInsider Threats 214\u003c\/p\u003e \u003cp\u003eOrdinary, Solitary Hackers or Hacker Groups 214\u003c\/p\u003e \u003cp\u003e\u003cb\u003e40 Profile: \u003ci\u003eAdam Shostack\u003c\/i\u003e 217\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eAdam Shostack\u003c\/i\u003e 220\u003c\/p\u003e \u003cp\u003e\u003cb\u003e41 Computer Security Education 221\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eComputer Security Training Topics 222\u003c\/p\u003e \u003cp\u003eEnd-User\/Security Awareness Training 222\u003c\/p\u003e \u003cp\u003eGeneral IT Security Training 222\u003c\/p\u003e \u003cp\u003eIncident Response 222\u003c\/p\u003e \u003cp\u003eOS and Application-Specific Training 223\u003c\/p\u003e \u003cp\u003eTechnical Skills 223\u003c\/p\u003e \u003cp\u003eCertifications 223\u003c\/p\u003e \u003cp\u003eTraining Methods 224\u003c\/p\u003e \u003cp\u003eOnline Training 224\u003c\/p\u003e \u003cp\u003eBreak into My Website 224\u003c\/p\u003e \u003cp\u003eSchools and Training Centers 224\u003c\/p\u003e \u003cp\u003eBoot Camps 225\u003c\/p\u003e \u003cp\u003eCorporate Training 225\u003c\/p\u003e \u003cp\u003eBooks 225\u003c\/p\u003e \u003cp\u003e\u003cb\u003e42 Profile: \u003ci\u003eStephen Northcutt\u003c\/i\u003e  227\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eStephen Northcutt\u003c\/i\u003e 230\u003c\/p\u003e \u003cp\u003e\u003cb\u003e43 Privacy 231\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003ePrivacy Organizations 232\u003c\/p\u003e \u003cp\u003ePrivacy-Protecting Applications 233\u003c\/p\u003e \u003cp\u003e\u003cb\u003e44 Profile: \u003ci\u003eEva Galperin\u003c\/i\u003e 235\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eEva Galperin\u003c\/i\u003e 237\u003c\/p\u003e \u003cp\u003e\u003cb\u003e45 Patching  239\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003ePatching Facts 240\u003c\/p\u003e \u003cp\u003eMost Exploits Are Caused by Old Vulnerabilities That Patches Exist For 240\u003c\/p\u003e \u003cp\u003eMost Exploits Are Caused by a Few Unpatched Programs 240\u003c\/p\u003e \u003cp\u003eThe Most Unpatched Program Isn’t Always the Most Exploited Program 241\u003c\/p\u003e \u003cp\u003eYou Need to Patch Hardware Too 241\u003c\/p\u003e \u003cp\u003eCommon Patching Problems 241\u003c\/p\u003e \u003cp\u003eDetecting Missing Patching Isn’t Accurate 241\u003c\/p\u003e \u003cp\u003eYou Can’t Always Patch 242\u003c\/p\u003e \u003cp\u003eSome Percentage of Patching Always Fails 242\u003c\/p\u003e \u003cp\u003ePatching Will Cause Operational Issues 242\u003c\/p\u003e \u003cp\u003eA Patch Is a Globally Broadcasted Exploit Announcement 243\u003c\/p\u003e \u003cp\u003e\u003cb\u003e46 Profile: Window Snyder 245\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on Window Snyder 248\u003c\/p\u003e \u003cp\u003e\u003cb\u003e47 Writing as a Career 249\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eComputer Security Writing Outlets 250\u003c\/p\u003e \u003cp\u003eBlogs 250\u003c\/p\u003e \u003cp\u003eSocial Media Sites 250\u003c\/p\u003e \u003cp\u003eArticles   250\u003c\/p\u003e \u003cp\u003eBooks 251\u003c\/p\u003e \u003cp\u003eNewsletters 253\u003c\/p\u003e \u003cp\u003eWhitepapers 254\u003c\/p\u003e \u003cp\u003eTechnical Reviews 254\u003c\/p\u003e \u003cp\u003eConferences 254\u003c\/p\u003e \u003cp\u003eProfessional Writing Tips 255\u003c\/p\u003e \u003cp\u003eThe Hardest Part Is Starting 255\u003c\/p\u003e \u003cp\u003eRead Differently 255\u003c\/p\u003e \u003cp\u003eStart Out Free 255\u003c\/p\u003e \u003cp\u003eBe Professional 256\u003c\/p\u003e \u003cp\u003eBe Your Own Publicist 256\u003c\/p\u003e \u003cp\u003eA Picture Is Worth a Thousand Words 256\u003c\/p\u003e \u003cp\u003e\u003cb\u003e48 Profile: \u003ci\u003eFahmida Y . Rashid\u003c\/i\u003e 259\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eFor More Information on \u003ci\u003eFahmida Y. Rashid\u003c\/i\u003e 262\u003c\/p\u003e \u003cp\u003e\u003cb\u003e49 Guide for Parents with Young Hackers   263\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eSigns Your Kid Is Hacking 264\u003c\/p\u003e \u003cp\u003eThey Tell You They Hack 264\u003c\/p\u003e \u003cp\u003eOverly Secretive About Their Online Activities 264\u003c\/p\u003e \u003cp\u003eThey Have Multiple Email\/Social Media Accounts You Can’t Access 265\u003c\/p\u003e \u003cp\u003eYou Find Hacking Tools on the System 265\u003c\/p\u003e \u003cp\u003ePeople Complain You Are Hacking 265\u003c\/p\u003e \u003cp\u003eYou Catch Them Switching Screens Every Time You Walk into the Room 265\u003c\/p\u003e \u003cp\u003eThese Signs Could Be Normal 265\u003c\/p\u003e \u003cp\u003eNot All Hacking Is Bad 266\u003c\/p\u003e \u003cp\u003eHow to Turn Around Your Malicious Hacker 266\u003c\/p\u003e \u003cp\u003eMove Their Computers into the Main Living Area and Monitor 267\u003c\/p\u003e \u003cp\u003eGive Guidance 267\u003c\/p\u003e \u003cp\u003eGive Legal Places to Hack 267\u003c\/p\u003e \u003cp\u003eConnect Them with a Good Mentor 269\u003c\/p\u003e \u003cp\u003e\u003cb\u003e50 Hacker Code of Ethics   271\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHacker Code of Ethics 272\u003c\/p\u003e \u003cp\u003eBe Ethical, Transparent, and Honest 273\u003c\/p\u003e \u003cp\u003eDon’t Break the Law 273\u003c\/p\u003e \u003cp\u003eGet Permission 273\u003c\/p\u003e \u003cp\u003eBe Confidential with Sensitive Information 273\u003c\/p\u003e \u003cp\u003eDo No Greater Harm 273\u003c\/p\u003e \u003cp\u003eConduct Yourself Professionally 274\u003c\/p\u003e \u003cp\u003eBe a Light for Others 274\u003c\/p\u003e \u003cp\u003eIndex 275\u003c\/p\u003e   \u003cp\u003e\u003cb\u003eROGER A. GRIMES\u003c\/b\u003e has worked in the field of computer security for over 27 years. As a professional penetration tester, he successfully broke into every company he was hired to hack within an hour, with a single exception that took three hours. He consults worldwide and has been the \u003ci\u003eInfoWorld\u003c\/i\u003e magazine (www.infoworld.com) computer security columnist since 2005. \u003c\/p\u003e\u003cp\u003e(ISC)\u003csup\u003e2\u003c\/sup\u003e books published by Wiley provide aspiring and experienced cybersecurity professionals with unique insights and advice for delivering on (ISC)\u003csup\u003e2\u003c\/sup\u003e's vision of inspiring a safe and secure world.    \u003c\/p\u003e\u003cp\u003e\u003cb\u003eMEET THE ROCK STARS OF CYBERSECURITY\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eDay after day, whitehats meet blackhats on the field of cyberspace, battling for control of the technology that powers our world. Ethical hackers—whitehats—are among the most brilliant and resourceful of technology experts, constantly developing new ways to stay one step ahead of those who would hijack our data and systems for personal gain. \u003c\/p\u003e\u003cp\u003eIn these pages, you're going to meet some of the unsung heroes who protect us all from the Dark Side. You'll discover why they chose this field, the areas in which they excel, and their most notable accomplishments. You'll also get a brief overview of the many different types of cyberattacks they battle. \u003c\/p\u003e\u003cp\u003eIf the world of ethical hacking intrigues you, here's where to start exploring. You'll hear from: \u003c\/p\u003e\u003cul\u003e \u003cli\u003e\n\u003cb\u003eBruce Schneier,\u003c\/b\u003e America's leading cyber-security expert\u003c\/li\u003e \u003cli\u003e\n\u003cb\u003eKevin Mitnick,\u003c\/b\u003e master of social engineering\u003c\/li\u003e \u003cli\u003e\n\u003cb\u003eDr. Dorothy E. Denning,\u003c\/b\u003e specialist in intrusion detection\u003c\/li\u003e \u003cli\u003e\n\u003cb\u003eMark Russinovich,\u003c\/b\u003e Azure Cloud CTO\u003c\/li\u003e \u003cli\u003e\n\u003cb\u003eDr. Charlie Miller,\u003c\/b\u003e leader in thwarting car hacks\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003e \u003ci\u003e… and many more\u003c\/i\u003e\u003c\/p\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989323104485,"sku":"NP9781119396215","price":27.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781119396215.jpg?v=1761783666","url":"https:\/\/k12savings.com\/es\/products\/hacking-the-hacker-isbn-9781119396215","provider":"K12savings","version":"1.0","type":"link"}