LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Weekly Edition

Return to the Announcements page

Recent Features

LWN.net Weekly Edition for May 24, 2012

A uTouch architecture introduction

LWN.net Weekly Edition for May 17, 2012

Tasting the Ice Cream Sandwich

Highlights from the PostgreSQL 9.2 beta

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Syngress Releases "InfoSec Career Hacking"

[Posted May 24, 2005 by cook]

From:  Wendy Patterson <syngresspr-AT-oreilly.com>
To:  lwn-AT-lwn.net
Subject:  Syngress Releases "InfoSec Career Hacking"
Date:  Tue, 24 May 2005 11:11:12 -0700

Syngress Publishing Announces Publication
of "InfoSec Career Hacking: Sell Your Skillz, Not Your Soul"

A Technical Guide to Landing (and Keeping) a Job in the Information
Security Field

Contact: Amy Pedersen
781-681-5151 x12
amy@syngress.com

Rockland, MA May 20, 2005 -- Syngress Publishing, Inc., today announced
the publication of "InfoSec Career Hacking: Sell Your Skillz, Not Your
Soul" (ISBN: 1-597490-11-3), a technical guide to landing (and keeping) a
job in the Information Security field.

According to Christopher W. Klaus, Founder and CEO, Klaus Entertainment,
Inc. and Founder and Chief Security Officer, Internet Security Systems,
"This book contains many approaches and examples of techniques that work
today and that will help security professionals to cope in the future. It
will help guide information professionals to benefit from lessons learned
and enable tomorrow's security professionals to stand on the shoulders
of leading security experts and keep the security journey going."

Chapter topics include: The Targets--What I Want to Be When I Grow Up (or
at Least Get Older), Reconnaissance: Social Engineering for Profit;
Enumerate: Determine What's Out There; First Strike: Basic Tactics for
Successful Exploitation; The Laws of Security; No Place Like
/home--Creating an Attack Lab; Vulnerability Disclosure; Classes of
Attack Don't Trip the Sensors: Integrate and Imitate; Vulnerability
Remediation--Work Within the System; Incident Response--Putting Out
Fires Without Getting Burned; Rooting: Show Me the Money!

BOOK DETAILS
ISBN: 1-597490-11-3
PRICE: $39.95 U.S.
PAGE COUNT: 472 PP

Inside the book coverage:
* Determine What You Want to Be When You Grow Up (or at Least Get Older)
  See how the InfoSec field has matured, and decide if this is the life
  for you.
* Social Engineering for Profit
  Use both your people and research skills to perform reconnaissance on
  the InfoSec job market.
* Choose the Right Path
  Learn what certifications, work experience, and education are required
  (or not) to land your dream job.
* There's No Place Like Home...for a Test Lab!
  Build a fully functional test lab and attack machine in your basement
  to fine-tune both your attack and defense skills.
* Learn the Laws of Security
  Master the ten guiding principles of information security to outwit
  malicious hackers in the real world.
* Know Your Enemies
  Identify and understand the classes of attack: denial of service, 
  information leakage, regular file access, misinformation, special 
  file/database access, remote arbitrary code execution, elevation of 
  privileges.
* Feeling Vulnerable?
  Navigate the dangerous waters of vulnerability disclosure from
  nondisclosure to full disclosure.
* Don't Trip the Sensors
  Use your l337 H4x0r skillz to assimilate into the workplace and hack
  the corporate ladder.
* Master Incident Response
  Develop contingency plans to put out fires in the workplace without
  getting burned.
* Install Your Career Rootkit
  Since you got there, you might as well stay there!

About the Authors
Aaron W. Bayles is a senior security consultant with Sentigy, Inc. of
Houston, TX. He provides service to Sentigy's clients with penetration
testing, vulnerability assessment, and risk assessments for enterprise
networks. His specialties include wireless assessments and incident
response. Aaron's background includes work as a senior security engineer
with SAIC in Virginia and Texas. Aaron has provided InfoSec support and
penetration testing for multiple agencies in the U.S. Department of the
Treasury, such as the Financial Management Service and Securities and
Exchange Commission, and the Department of Homeland Security, such as U.
S. Customs and Border Protection.

Johnny Long has spoken on network security and Google hacking at several
computer security conferences around the world, including SANS, Def Con,
and the Black Hat Briefings. During his recent career with Computer
Sciences Corporation (CSC), a leading global IT services company, he has
performed active network and physical security assessments for hundreds of
government and commercial clients. His web site, currently the
Internet's largest repository of Google hacking techniques, can be found
at http://johnny.ihackstuff.com. Johnny is the author of "Google Hacking
for Penetration Testers" (Syngress Publishing, ISBN: 1-931836-36-1).

Chris Hurley (aka Roamer) is a Senior Penetration Tester working in the
Washington, DC area.  He is the founder of the WorldWide WarDrive, an
effort by InfoSec professionals and hobbyists to generate awareness of the
insecurities associated with wireless networks and is the lead organizer
of the DEF CON WarDriving Contest. Chris has spoken at several security
conferences and published numerous whitepapers on a wide range of InfoSec
topics.  Chris is co-author of "WarDriving: Drive, Detect, Defend"
(Syngress, ISBN: 1-931836-03-5), and a contributor to "Aggressive Network
Self-Defense" (Syngress, ISBN: 1-931836-20-5).

James C. Foster, Fellow, is the Deputy Director of Global Security
Solution Development for Computer Sciences Corporation where he is
responsible for the vision and development of physical, personnel, and
data security solutions. Preceding CSC, Foster was the Director of
Research and Development for Foundstone Inc. (acquired by McAfee) and was
responsible for all aspects of product, consulting, and corporate R&D
initiatives. Foster is a seasoned speaker and has presented throughout
North America at conferences, technology forums, security summits, and
research symposiums with highlights at the Microsoft Security Summit,
Black Hat Briefings, Black Hat Windows, MIT Wireless Research Forum, SANS,
MilCon, TechGov, InfoSec World 2001, and the Thomson Security Conference.
Foster is also a well published author with multiple commercial and
educational papers; and has authored, contributed, or edited for major
publications including: "Snort 2.1 Intrusion Detection" (Syngress, ISBN:
1-931836-04-3), "Hacking Exposed, Fourth Edition," Anti-Hacker Toolkit,
Second Edition," "Advanced Intrusion Detection, Hacking the Code: ASP.NET
Web Application Security" (Syngress, ISBN: 1-932266-65-8), "Anti-Spam
Toolkit, Google Hacking for Penetration Techniques" (Syngress, ISBN:
1-931836-36-1), and "Sockets, Shellcode, Porting and Coding" (Syngress
ISBN: 1-597490-05-9).

Drew Miller is an independent security consultant, and teaches and
lectures abroad on defensive security methodologies and application attack
detection. For the last several years, Drew has developed state-of-the-art
training courses for software engineers and security analysts, presenting
at the Black Hat, Inc. security conventions. His specialties include
modeling strategies of defensive programming to ensure stability,
performance and security in enterprise software. Drew has worked at many
levels of software development, from embedded operating systems, device
drivers and file systems at Datalight Inc. to consumer and enterprise
networking products such as Laplinks, PCSync and Cenzic Hailstorm. Drew
has also aided in the design and development of two security courses for
Hewlett-Packard at the Hewlett-Packard Security Services Center. He is the
author of "Black Hat Physical Device Security: Exploiting Hardware and
Software" (Syngress ISBN: 1-932266-81-X).

Christopher W. Klaus (Foreword), Chief Executive Officer at Klaus
Entertainment, Inc. (KEI).  Founded in 2003, KEI provides Kaneva.com, the
world's digital entertainment destination designed to bring together
consumers and artists to watch, create, and play a wide variety of online
content. Mr. Klaus is also the founder and Chief Security Advisor for
Internet Security Systems, Inc. (ISS).  He created the company in 1994 to
help organizations around the world safeguard critical data from the
ever-growing number of network security vulnerabilities and threats. Mr.
Klaus has testified at several U.S. Senate and House of Representative
Hearings on issues surrounding cyber security. Most recently, Mr. Klaus
was selected to co-chair the Technical Standards and Common Criteria Task
Force for the Department of Homeland Security National Cyber Security
Summit. Technical Standards and Common Criteria is one of five private
sector sponsored task forces to address specific cyber security issues
within the President's National Strategy to Secure Cyberspace.

Background Information
Syngress Publishing (www.syngress.com), headquartered in Rockland,
Massachusetts, is an independent publisher of print and electronic
reference materials for Information Technology professionals seeking skill
enhancement and career advancement. Distributed throughout Europe, Asia,
and the U.S. and Canada, Syngress titles have been translated into twenty
languages. The company's pioneering customer support program,
solutions@syngress.com, extends the value of every Syngress title with
regular information updates and customer-driven author forums. For more
information on Syngress products, contact Amy Pedersen at 781-681-5151 or
email amy@syngress.com. Syngress books are distributed in the United
States and Canada by O'Reilly Media, Inc.
(Log in to post comments)

Copyright © 2005, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds