Network Security Tools

Writing, Hacking, and Modifying Security Tools

Larger Cover

Writing, Hacking, and Modifying Security Tools

By Nitesh Dhanjani, Justin Clarke

Publisher: O'Reilly Media

Released: April 2005

Pages: 344

If you're an advanced security professional, then you know that the battle to protect online privacy continues to rage on. Security chat rooms, especially, are resounding with calls for vendors to take more responsibility to release products that are more secure. In fact, with all the information and code that is passed on a daily basis, it's a fight that may never end. Fortunately, there are a number of open source security tools that give you a leg up in the battle.

Often a security tool does exactly what you want, right out of the box. More frequently, you need to customize the tool to fit the needs of your network structure. Network Security Tools shows experienced administrators how to modify, customize, and extend popular open source security tools such as Nikto, Ettercap, and Nessus.

This concise, high-end guide discusses the common customizations and extensions for these tools, then shows you how to write even more specialized attack and penetration reviews that are suited to your unique network environment. It also explains how tools like port scanners, packet injectors, network sniffers, and web assessment tools function.

Some of the topics covered include:

Writing your own network sniffers and packet injection tools
Writing plugins for Nessus, Ettercap, and Nikto
Developing exploits for Metasploit
Code analysis for web applications
Writing kernel modules for security applications, and understanding rootkits

While many books on security are either tediously academic or overly sensational, Network Security Tools takes an even-handed and accessible approach that will let you quickly review the problem and implement new, practical solutions--without reinventing the wheel. In an age when security is critical, Network Security Tools is the resource you want at your side when locking down your network.

Modifying and Hacking Security Tools
1. Chapter 1 Writing Plug-ins for Nessus
  1. The Nessus Architecture
  2. Installing Nessus
  3. Using Nessus
  4. The NASL Interpreter
  5. Hello World
  6. Datatypes and Variables
  7. Operators
  8. if...else
  9. Loops
  10. Functions
  11. Predefined Global Variables
  12. Important NASL Functions
  13. Nessus Plug-ins
2. Chapter 2 Developing Dissectors and Plug-ins for the Ettercap Network Sniffer
  1. Installing and Using Ettercap
  2. Writing an Ettercap Dissector
  3. Writing an Ettercap Plug-in
3. Chapter 3 Extending Hydra and Nmap
  1. Extending Hydra
  2. Adding Service Signatures to Nmap
4. Chapter 4 Writing Plug-ins for the Nikto Vulnerability Scanner
  1. Installing Nikto
  2. Using Nikto
  3. Nikto Under the Hood
  4. Existing Nikto Plug-ins
  5. Adding Custom Entries to the Plug-in Databases
  6. Using LibWhisker
  7. Writing an NTLM Plug-in for Brute-Force Testing
  8. Writing a Standalone Plug-in to Attack Lotus Domino
5. Chapter 5 Writing Modules for the Metasploit Framework
  1. Introduction to MSF
  2. Overview of Stack Buffer Overflows
  3. Writing Exploits for MSF
  4. Writing a Module for the MnoGoSearch Overflow
  5. Writing an Operating System Fingerprinting Module for MSF
6. Chapter 6 Extending Code Analysis to the Webroot
  1. Attacking Web Applications at the Source
  2. Toolkit 101
  3. PMD
  4. Extending PMD
Modifying and Hacking Security Tools
1. Chapter 7 Fun with Linux Kernel Modules
  1. Hello World
  2. Intercepting System Calls
  3. Hiding Processes
  4. Hiding from netstat
2. Chapter 8 Developing Web Assessment Tools and Scripts
  1. Web Application Environment
  2. Designing the Scanner
  3. Building the Log Parser
  4. Building the Scanner
  5. Using the Scanner
  6. Complete Source Code
3. Chapter 9 Automated Exploit Tools
  1. SQL Injection Exploits
  2. The Exploit Scanner
  3. Using the Scanner
4. Chapter 10 Writing Network Sniffers
  1. Introduction to libpcap
  2. Getting Started with libpcap
  3. libpcap and 802.11 Wireless Networks
  4. libpcap and Perl
  5. libpcap Library Reference
5. Chapter 11 Writing Packet-Injection Tools
  1. Introduction to libnet
  2. Getting Started with libnet
  3. Advanced libnet Functions
  4. Combining libnet and libpcap
  5. Introducing AirJack

Colophon

Title:

Network Security Tools

By:

Nitesh Dhanjani, Justin Clarke

Publisher:

O'Reilly Media

Formats:

Print
Safari Books Online

Print:

April 2005

Pages:

344

Print ISBN:

978-0-596-00794-2

| ISBN 10:

0-596-00794-9

Nitesh Dhanjani

Nitesh Dhanjani is a well known security researcher, author, and speaker. Dhanjani is currently Senior Manager at a large consulting firm where he advises some of the largest corporations around the world on how to establish enterprise wide information security programs and solutions. Dhanjani is also responsible for evangelizing brand new technology service lines around emerging technologies and trends such as cloud computing and virtualization.

Prior to his current job, Dhanjani was Senior Director of Application Security and Assessments at a major credit bureau where he spearheaded brand new security efforts into enhancing the enterprise SDLC, created a process for performing source code security reviews & Threat Modeling, and managed the Attack & Penetration team.

Dhanjani is the author of "Network Security Tools: Writing, Hacking, and Modifying Security Tools" (O'Reilly) and "HackNotes: Linux and Unix Security" (Osborne McGraw-Hill). He is also a contributing author to "Hacking Exposed 4" (Osborne McGraw-Hill) and "HackNotes: Network Security". Dhanjani has been invited to talk at various information security events such as the Black Hat Briefings, RSA, Hack in the Box, Microsoft Blue Hat, and OSCON.

Dhanjani graduated from Purdue University with both a Bachelors and Masters degree in Computer Science.

Dhanjani's personal blog is located at dhanjani.com.

View Nitesh Dhanjani's full profile page.
Justin Clarke

Justin Clarke is a Director with Gotham Digital Science, based in the United Kingdom. He has many years of experience in testing the security of networks, web applications, and wireless networks for large financial, retail, and technology clients in the United States, the United Kingdom and New Zealand.

Justin is the co-author of Network Security Tools: Writing, Hacking, and Modifying Security Tools, a contributing author to Network Security Assessment: Know Your Network, 2nd Edition, and the lead author of SQL Injection Attacks and Defenses (Syngress) as well as having been invited to speak at a number of conferences on security topics, including Black Hat, EuSecWest, OSCON and RSA.

Justin is active in developing security tools for penetrating web applications, servers, and wireless networks and as a compulsive tinkerer he can't leave anything alone without at least trying to see how it works.

View Justin Clarke's full profile page.

Colophon

Our look is the result of reader comments, our own experimentation, and feedback from distribution channels. Distinctive covers complement our distinctive approach to technical topics, breathing personality and life into potentially dry subjects. The figure on the cover of Network Security Tools is a trapeze artist, the most romantic of circus performers. The allure of the trapeze performance, with its breathtaking aerial acrobatics and seemingly effortless flight, belies grave danger: the artist performs without a security net, so the slightest of mistakes can endanger a performer's life. Jamie Peppard was the production editor and proofreader, and Audrey Doyle was the copyeditor for Network Security Tools. Claire Cloutier and Matt Hutchinson provided quality control. Lydia Onofrei provided production assistance. Ellen Troutman Zaig wrote the index.

Emma Colby designed the cover of this book, based on a series design by Edie Freedman. The cover image is a 19th-century engraving from Dover's Old Time Circus Cuts. Karen Montgomery produced the cover layout with Adobe InDesign CS using Adobe's ITC Garamond font.

David Futato designed the interior layout. This book was converted by Keith Fahlgren to FrameMaker 5.5.6 with a format conversion tool created by Erik Ray, Jason McIntosh, Neil Walls, and Mike Sierra that uses Perl and XML technologies. The text font is Linotype Birka; the heading font is Adobe Myriad Condensed; and the code font is LucasFont's TheSans Mono Condensed. The illustrations that appear in the book were produced by Robert Romano, Jessamyn Read, and Lesley Borash using Macromedia FreeHand MX and Adobe Photoshop CS. The tip and warning icons were drawn by Christopher Bing. This colophon was written by Jamie Peppard.

Description

Table of Contents

Product Details

About the Author

Colophon