Syngress Releases "Sockets, Shellcode, Porting, and Coding"

"Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and
Tool Coding for Security Professionals" Demystifies Elite Programming
Techniques

Contact: Amy Pedersen
781-681-5151 x12
amy@syngress.com

Rockland, MA April 7, 2005--Syngress Publishing, Inc. today announced
the publication of "Sockets, Shellcode, Porting, and Coding: Reverse
Engineering Exploits and Tool Coding for Security Professionals" (ISBN:
1-597490-05-9).

Last year, the number of "severe software exploits" increased 27% to a
total of over 1,500. The average vulnerability is then exploited by
malicious hackers within 5.8 days (Source: Symantec Security Threat
Report). In this groundbreaking book, bestselling author James C. Foster
provides never-before-seen detail on how the fundamental building blocks
of software and operating systems are exploited by malicious hackers and
provides working code and scripts in C/C++, Java, Perl, and NASL to defend
against the most dangerous attacks. The book covers in detail the five
most important disciplines for security professionals and software
developers: Coding, Sockets, Shellcode, Porting Applications, and Coding
Security Tools. The book features a foreword by industry expert Stuart
McClure.

Chapter topics: Security Coding, NASL Scripting, BSD Sockets, Windows
Sockets (Winsock), Java Sockets, Writing Portable Code, Portable Network
Programming, Writing Shellcode (I and II), Writing Exploits (I, II, and
III), Writing Security Components, Creating a Web Security Tool, Glossary,
Security Tool Compendium, Exploit Archives, Syscall Reference, Data
Conversion Reference

BOOK DETAILS
ISBN: 1-597490-05-9
PRICE: $49.95 U.S.
PAGE COUNT: 700 PP

Inside the book coverage:
-Port Public Exploits to Windows, Linux, UNIX, and Mac OS
-Use Reverse Engineering to Perform Zero-Day Exploit Forensics
-Implement a Previously Undocumented Nmap-Style Input Function

About the Authors
James C. Foster, Fellow, is the Deputy Director of Global Security
Solution Development for Computer Sciences Corporation, where he is
responsible for the vision and development of physical, personnel, and
data security solutions. Prior to CSC, Foster was the Director of Research
and Development for Foundstone Inc. (acquired by McAfee) and was
responsible for all aspects of product, consulting, and corporate R&D
initiatives.

Prior to joining Foundstone, Foster was an Executive Advisor and Research
Scientist with Guardent Inc. (acquired by Verisign) and an adjunct author
at Information Security Magazine (acquired by TechTarget), subsequent to
working as Security Research Specialist for the Department of Defense.
With his core competencies residing in high-tech remote management,
international expansion, application security, protocol analysis, and
search algorithm technology, Foster has conducted numerous code reviews
for commercial OS components, Win32 application assessments, and reviews
on commercial-grade cryptography implementations.

Foster is a seasoned speaker and has presented throughout North America at
conferences, technology forums, security summits, and research symposiums
with highlights at the Microsoft Security Summit, Black Hat USA, Black Hat
Windows, MIT Wireless Research Forum, SANS, MilCon, TechGov, InfoSec World
2001, and the Thomson Security Conference. He also is commonly asked to
comment on pertinent security issues and has been sited in USA Today,
Information Security Magazine, Baseline, Computer World, Secure Computing,
and the MIT Technologist. Foster holds an A.S., B.S., MBA, and numerous
technology and management certifications and has attended or conducted
research at the Yale School of Business, Harvard University, the
University of Maryland, and is currently a Fellow at University of
Pennsylvania's Wharton School of Business.

Foster has authored, contributed, or edited for major publications
including "Snort 2.1 Intrusion Detection" (Syngress Publishing, ISBN:
1-931836-04-3), "Hacking Exposed, Fourth Edition," "Anti-Hacker Toolkit,
Second Edition," "Advanced Intrusion Detection," "Hacking the Code:
ASP.NET Web Application Security" (Syngress, ISBN: 1-932266-65-8),
"Anti-Spam Toolkit," and "Google Hacking for Penetration Testers"
(Syngress, ISBN: 1-931836-36-1).

Stuart McClure, CISSP, CNE, CCSE, is Senior Vice President of Risk
Management Product Development at McAfee, Inc., where he is responsible
for driving product strategy and marketing for the McAfee Foundstone
family of risk mitigation and management solutions. McAfee Foundstone
saves countless millions in revenue and man-hours annually in recovering
from hacker attacks, viruses, worms, and malware.

Prior to his role at McAfee, Stuart was Founder, President, and Chief
Technology Officer of Foundstone, Inc., which was acquired by McAfee in
October of 2004. Widely recognized for his extensive and in-depth
knowledge of security products, Stuart is considered one of the industry's
leading authorities on information security. A well-published and
acclaimed security visionary, Stuart brings over 15 years of technology
and executive leadership to Foundstone with profound technical,
operational, and financial experience. He leads both the product vision
and strategy for Foundstone, as well as operational responsibilities for
all technology development, support, and implementation. Since he assumed
this leadership position, Stuart has helped grow annual revenues over 100%
every year since the company's inception in 1999.

Prior to joining Foundstone, Stuart held a variety of leadership positions
in security and IT management, with Ernst & Young's National Security
Profiling Team, two years as an industry analyst with InfoWorld's Test
Center, five years as Director of IT with both state and local California
government, two years as owner of an IT consultancy, and two years in IT
with University of Colorado, Boulder. Stuart holds a bachelor's degree in
Psychology and Philosophy, with an emphasis in Computer Science
Applications from the University of Colorado, Boulder. He later earned
numerous certifications, including ISC2's CISSP, Novell's CNE, and Check
Point's CCSE.

Background Information
Syngress Publishing (www.syngress.com), headquartered in Rockland,
Massachusetts, is an independent publisher of print and electronic
reference materials for Information Technology professionals seeking skill
enhancement and career advancement. Distributed throughout Europe, Asia,
and the U.S. and Canada, Syngress titles have been translated into twenty
languages. The company's pioneering customer support program,
solutions@syngress.com, extends the value of every Syngress title with
regular information updates and customer-driven author forums. For more
information on Syngress products, contact Amy Pedersen at 781-681-5151 or
email amy@syngress.com. Syngress books are distributed in the United
States and Canada by O'Reilly Media, Inc.