Addison-Wesley Professional Announces Rootkits: Subverting the Windows Kernel.BOSTON -- Addison-Wesley Professional, a leading publisher of quality books for software engineers, today announced the introduction of the world's first comprehensive guide to rootkits. The ultimate backdoor See trapdoor. , rootkits give hackers ongoing and virtually undetectable access to the systems they exploit. Now, two of the world's leading experts have written the first comprehensive guide to rootkits: what they are, how they work, how to build them, and how to detect them. Rootkit.com's Greg Hoglund and James Butler created and teach Black Hat's legendary course in rootkits. (Black Hat is an event where security professionals discuss their research, projects, and business strategies). In this book, they reveal never-before-told aspects of rootkit technology, including how attackers can get in and stay in for years, without detection. After reading this book, readers will be able to: understand the role of rootkits in remote command/control and software eavesdropping Secretly gaining unauthorized access to confidential communications. Examples include listening to radio transmissions or using laser interferometers to reconstitute conversations by reflecting laser beams off windows that are vibrating in synchrony to the sound in the room. ; build kernel rootkits that can make processes, files, and directories invisible; master key rootkit programming techniques, including hooking, runtime patching, and directly manipulating kernel objects; work with layered drivers to implement keyboard sniffers and file filters; establish covert channels for retaining control over systems with installed rootkits; detect rootkits and built host-based intrusion prevention software that resists rootkit attacks; and discover legitimate uses for rootkits by law enforcement and security organizations "This book is an essential read for anyone responsible for Windows security. Security professionals, Windows system administrators, and programmers in general will want to understand the techniques used by rootkit authors," said Jennifer Kolde, security consultant, author and instructor. "At a time when many IT and security professionals are still worrying about the latest e-mail virus or how to get all of this month's security patches installed, Hoglund and Butler open your eyes to some of the most stealthy stealth·y adj. stealth·i·er, stealth·i·est Marked by or acting with quiet, caution, and secrecy intended to avoid notice. See Synonyms at secret. and significant threats to the Windows operating system." "It's imperative that everybody working in the field of cyber-security read this book to understand the growing threat of rootkits," said Mark Russinovich, Editor, Windows IT Pro Windows IT Pro (ISSN-1552-3136) is a trade publication and web site owned by Penton Media serving the information needs of IT professionals in various fields including data processing, software development and programming. /Windows & .NET Magazine Rootkits: Subverting the Windows Kernel, ISBN ISBN abbr. International Standard Book Number ISBN International Standard Book Number ISBN n abbr (= International Standard Book Number) → ISBN m : 0321294319 by Greg Hoglund and James Butler, is available at retail books stores and online booksellers. List price $44.99 USD USD In currencies, this is the abbreviation for the U.S. Dollar. Notes: The currency market, also known as the Foreign Exchange market, is the largest financial market in the world, with a daily average volume of over US $1 trillion. . http://www.awprofessional.com/rootkits Greg Hoglund, a pioneer in the area of software security, is CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. of HBGary, Inc., a leading provider of software security verification services. After writing one of the first network vulnerability scanners (installed in over half of all Fortune 500 companies), he created and documented the first Windows NT-based rootkit, founding www.rootkit.com in the process. Greg is a frequent speaker at Black Hat, RSA (1) (Rural Service Area) See MSA. (2) (Rivest-Shamir-Adleman) A highly secure cryptography method by RSA Security, Inc., Bedford, MA (www.rsa.com), a division of EMC Corporation since 2006. It uses a two-part key. , and other security conferences. He coauthored the bestselling Exploiting Software: How to Break Code (Addison-Wesley, 2004). http://www.awprofessional.com/title/0201786958 James Butler, Director of Engineering at HBGary, has a world-class talent for kernel programming and rootkit development and extensive experience in host-based intrusion-detection systems. He is the developer of VICE, a rootkit detection and forensics See computer forensics. system. Jamie's previous positions include Senior Security Software Engineer at Enterasys and Computer Scientist at the National Security Agency. He is a frequent trainer and speaker at Black Hat. About Addison-Wesley Professional Addison-Wesley Professional is the leading publisher of high-quality and timely information for programmers, developers, and system administrators. The Company's mission is to provide educational materials concerning new technologies and new approaches to current technologies written by leading authorities. Addison-Wesley Professional is a division of Pearson Education, the global leader in integrated education publishing. Pearson Education is part of Pearson plc (NYSE NYSE See: New York Stock Exchange : PSO PSO - Oracle Parallel Server ), the international media company. Visit us at www.awprofessional.com. All products and company names mentioned herein may be trademarks of their respective owners. |
|
Printer friendly
Cite/link
Email
Feedback
Reader Opinion