Hack Attacks Testing: How to Conduct Your Own Security Audit [Paperback]

Learn how to conduct thorough security examinations via illustrations and virtual simulations

A network security breach (a hack, crack, or other invasion) occurs when unauthorized access to the network is achieved and havoc results. The best possible defense is an offensive strategy that allows you to regularly test your network to reveal the vulnerabilities and close the holes before someone gets in. Written by veteran author and security expert John Chirillo, Hack Attacks Testing explains how to perform your own security audits.

Step by step, the book covers how-to drilldowns for installing and configuring your Tiger Box operating systems, installations, and configurations for some of the most popular auditing software suites. In addition, it includes both common and custom usages, scanning methods, and reporting routines of each. Finally, Chirillo inspects the individual vulnerability scanner results and compares them in an evaluation matrix against a select group of intentional security holes on a target network. Chirillo tackles such topics as:

• Building a multisystem Tiger Box
• Basic Windows 2000 Server installation and configuration for auditing
• Basic Linux and Solaris installation and configuration
• Basic Mac OS X installation and configuration for auditing
• ISS, CyberCop, Nessus, SAINT, and STAT scanners
• Using security analysis tools for Mac OS X
• Vulnerability assessment

Bonus CD!
The CD contains virtual simulations of scanners, ISS Internet Scanner evaluation version, and more.

Covers how-to drilldowns for installing and configuring your Tiger Box operating systems, installations, and configurations for some of the most popular auditing software suites. Softcover. CD-ROM included.

Learn how to conduct thorough security examinations via illustrations and virtual simulations

A network security breach (a hack, crack, or other invasion) occurs when unauthorized access to the network is achieved and havoc results. The best possible defense is an offensive strategy that allows you to regularly test your network to reveal the vulnerabilities and close the holes before someone gets in. Written by veteran author and security expert John Chirillo, Hack Attacks Testing explains how to perform your own security audits.

Step by step, the book covers how-to drilldowns for installing and configuring your Tiger Box operating systems, installations, and configurations for some of the most popular auditing software suites. In addition, it includes both common and custom usages, scanning methods, and reporting routines of each. Finally, Chirillo inspects the individual vulnerability scanner results and compares them in an evaluation matrix against a select group of intentional security holes on a target network. Chirillo tackles such topics as:

• Building a multisystem Tiger Box
• Basic Windows 2000 Server installation and configuration for auditing
• Basic Linux and Solaris installation and configuration
• Basic Mac OS X installation and configuration for auditing
• ISS, CyberCop, Nessus, SAINT, and STAT scanners
• Using security analysis tools for Mac OS X
• Vulnerability assessment

Bonus CD!

The CD contains virtual simulations of scanners, ISS Internet Scanner evaluation version, and more.

JOHN CHIRILLO is Senior Inter-networking Engineer at ValCom, a technology management company in the Midwest. John holds numerous certifications including CCNA, CCDA, CCNP, CISSP, Intel Certified Solutions Consultant, Compaq ASE Enterprise Storage, and Master UNIX certifications, among others. John has more than ten years of experience on various computer systems and more than five years of training experience. John is the author of five Wiley books, including the Hack Attacks Series.