Hacking for Dummies. (For Dummies)

• Hacking methodology and researching public information to see what a hacker can quickly learn about your operations
• Social engineering (how hackers manipulate employees to gain information and access), physical security, and password vulnerabilities
• Network infrastructure, including port scanners, SNMP scanning, banner grabbing, scanning, and wireless LAN vulnerabilities
• Operating systems, including Windows, Linux, and Novell NetWare
• Application hacking, including malware (Trojan horses, viruses, worms, rootkits, logic bombs, and more), e-mail and instant messaging, and Web applications
• Tests, tools (commercial, shareware, and freeware), and techniques that offer the most bang for your ethical hacking buck

With this guide you can develop and implement a comprehensive security assessment plan, get essential support from management, test your system for vulnerabilities, take countermeasures, and protect your network infrastructure. You discover how to beat hackers at their own game, with:

• A hacking toolkit, including War dialing software, password cracking software, network scanning software, network vulnerability assessment software, a network analyzer, a Web application assessment tool, and more
• All kinds of countermeasures and ways to plug security holes
• A list of more than 100 security sites, tools, and resources

Ethical hacking helps you fight hacking with hacking, pinpoint security flaws within your systems, and implement countermeasures. Complete with tons of screen shots, step-by-step instructions for some countermeasures, and actual case studies from IT security professionals, this is an invaluable guide, whether you’re an Internet security professional, part of a penetration-testing team, or in charge of IT security for a large or small business.

Find out how to test your systems, plug the holes, and foil attackers

You'll find out how external hacker and rogue insider hacks happen, how to discover where your systems and network are weak, what you can do to strengthen your defenses, and how to prepare reports and recommendations to management.

Discover how to

• Identify the different types of attacks
• Create a plan for testing
• Recognize vulnerabilities in your network
• Prevent attacks by rogue insiders
• Test applications, files, and databases
• Plug security holes

Introduction.

Part I: Building the Foundation for Ethical Hacking.

Chapter 1: Introduction to Ethical Hacking.

Chapter 2: Cracking the Hacker Mindset.

Chapter 3: Developing Your Ethical Hacking Plan.

Chapter 4: Hacking Methodology.

Part II: Putting Ethical Hacking in Motion.

Chapter 5: Social Engineering.

Chapter 6: Physical Security.

Chapter 7: Passwords.

Part III: Network Hacking.

Chapter 8: War Dialing.

Chapter 9: Network Infrastructure.

Chapter 10: Wireless LANs.

Part IV: Operating System Hacking.

Chapter 11: Windows.

Chapter 12: Linux.

Chapter 13: Novell NetWare.

Part V: Application Hacking.

Chapter 14: Malware.

Chapter 15: Messaging Systems.

Chapter 16: Web Applications.

Part VI: Ethical Hacking Aftermath.

Chapter 17: Reporting Your Results.

Chapter 18: Plugging Security Holes.

Chapter 19: Managing Security Changes.

Part VII: The Part of Tens.

Chapter 20: Ten Tips for Getting Upper Management Buy-In.

Chapter 21: Ten Deadly Mistakes.

Part VIII: Appendixes.

Appendix A: Tools and Resources.

Appendix B: About the Book Web Site.

Index.