Sunday, January 27, 2013

Hacking Resources Originally Posted on the WebPayments Mailing List

For what is worth, here are a few things I've found interesting, or would like to learn more about:

TCP/IP/HEX

IBM Red Book: http://www.redbooks.ibm.com/abstracts/gg243376.html
     Hexadecimal: http://en.wikipedia.org/wiki/Hexadecimal
   - Hex Editor: http://en.wikipedia.org/wiki/Hex_editor
   - Hex Dump: http://en.wikipedia.org/wiki/Hexdump


Patvera Maltego (network visualization used for social engineering)

http://www.paterva.com/web6/products/maltego.php


Social Engineering Risks (the weakest link)

- Social Engineering: http://en.wikipedia.org/wiki/Social_engineering_%28security%29
- Hacking the Human, Ian Mann


Rainbow Tables, Dictionary Attacks, Brute Force Attacks  (for Cracking)

https://en.wikipedia.org/wiki/Rainbow_table
https://en.wikipedia.org/wiki/Dictionary_attack
https://en.wikipedia.org/wiki/Brute_force_attack


Rainbow Series (Collection of infosec books)

- https://en.wikipedia.org/wiki/Rainbow_Series


BackTrack Linux (penetration testing distribution)

- http://www.backtrack-linux.org/


Wireshark (packet analyzer)

- http://www.wireshark.org/


Network Security Conferences, such as:

- DEFCON: https://www.defcon.org/   (curiously, no mention of the semantic web)
- Blackhat: http://www.blackhat.com/


Metasploit (platform for exploitation)

- MetaSploit http://www.metasploit.com/
- http://en.wikipedia.org/wiki/Metasploit_Project


SNORT (network intrusion detection and prevention)

- http://en.wikipedia.org/wiki/Snort_%28software%29


netstat (network statistics)

- https://en.wikipedia.org/wiki/Netstat


ISO/IEC 27000-series (standards for information security)

- https://en.wikipedia.org/wiki/ISO/IEC_27000-series


Books:

The Network Security Bible, Eric Cole

Joel Scambray et. al, Hacking Web Applications Exposed, 2nd Ed.


Magazines:

Phrack Magazine: http://phrack.org/

1 comment:

  1. I believe I was really wanting something more like netcat, although tools like netstat, ifconfig, ipconfig, etc. are also useful.

    ReplyDelete