Network Attacks and Exploitation

Book description

Incorporate offense and defense for a more effective network security strategy

Network Attacks and Exploitation provides a clear, comprehensive roadmap for developing a complete offensive and defensive strategy to engage in or thwart hacking and computer espionage. Written by an expert in both government and corporate vulnerability and security operations, this guide helps you understand the principles of the space and look beyond the individual technologies of the moment to develop durable comprehensive solutions. Numerous real-world examples illustrate the offensive and defensive concepts at work, including Conficker, Stuxnet, the Target compromise, and more. You will find clear guidance toward strategy, tools, and implementation, with practical advice on blocking systematic computer espionage and the theft of information from governments, companies, and individuals.

Assaults and manipulation of computer networks are rampant around the world. One of the biggest challenges is fitting the ever-increasing amount of information into a whole plan or framework to develop the right strategies to thwart these attacks. This book clears the confusion by outlining the approaches that work, the tools that work, and resources needed to apply them.

  • Understand the fundamental concepts of computer network exploitation
  • Learn the nature and tools of systematic attacks
  • Examine offensive strategy and how attackers will seek to maintain their advantage
  • Understand defensive strategy, and how current approaches fail to change the strategic balance

Governments, criminals, companies, and individuals are all operating in a world without boundaries, where the laws, customs, and norms previously established over centuries are only beginning to take shape. Meanwhile computer espionage continues to grow in both frequency and impact. This book will help you mount a robust offense or a strategically sound defense against attacks and exploitation. For a clear roadmap to better network security, Network Attacks and Exploitation is your complete and practical guide.

Table of contents

  1. Title Page
  2. Copyright
  3. Dedication
  4. About the Author
  5. About the Technical Editor
  6. Credits
  7. Acknowledgments
  8. Introduction
  9. Chapter 1: Computer Network Exploitation
    1. Operations
    2. Operational Objectives
    3. CNE Revisited
    4. A Framework for Computer Network Exploitation
    5. Summary
  10. Chapter 2: The Attacker
    1. Principle of Humanity
    2. Life Cycle of an Operation
    3. Principle of Access
    4. Principle of Economy
    5. Economy Summary
    6. Attacker Structure
    7. Summary
  11. Chapter 3: The Defender
    1. Principle of Humanity
    2. Principle of Access
    3. The Defensive Life Cycle
    4. Principle of Economy
    5. The Helpful Defender
    6. Summary
  12. Chapter 4: Asymmetries
    1. False Asymmetries
    2. Advantage Attacker
    3. Advantage Defender
    4. Advantage Indeterminate
    5. Summary
  13. Chapter 5: Attacker Frictions
    1. Mistakes
    2. Complexity
    3. Flawed Attack Tools
    4. Upgrades and Updates
    5. Other Attackers
    6. The Security Community
    7. Bad Luck
    8. Summary
  14. Chapter 6: Defender Frictions
    1. Mistakes
    2. Flawed Software
    3. Inertia
    4. The Security Community
    5. Complexity
    6. Users
    7. Bad Luck
    8. Summary
  15. Chapter 7: Offensive Strategy
    1. Principle 1: Knowledge
    2. Principle 2: Awareness
    3. Principle 3: Innovation
    4. Principle 4: Precaution
    5. Principle 5: Operational Security
    6. Principle 6: Program Security
    7. Crafting an Offensive Strategy
    8. Modular Frameworks
    9. A Note on Tactical Decisions
    10. Summary
  16. Chapter 8: Defensive Strategy
    1. Failed Tactics
    2. Crafting a Defensive Strategy
    3. Cloud-Based Security
    4. Summary
  17. Chapter 9: Offensive Case Studies
    1. Stuxnet
    2. Flame
    3. Gauss
    4. Dragonfly
    5. Red October
    6. APT1
    7. Axiom
    8. Summary
  18. Epilogue
  19. Appendix: Attack Tools
  20. References
  21. Bibliography
  22. End User License Agreement

Product information

  • Title: Network Attacks and Exploitation
  • Author(s): Matthew Monte
  • Release date: August 2015
  • Publisher(s): Wiley
  • ISBN: 9781118987124