Hacking: The Art of Exploitation
 |
|
| Author | Jon Erickson |
|---|---|
| Country | United States (Original) |
| Language | English (Second Edition) |
| Series | Second Edition |
| Genre | Computer Science |
| Publisher | No Starch Press |
|
Publication date
|
February 2008 |
| Media type | Print Paperback |
| Pages | 488 |
| ISBN | |
Hacking: The Art of Exploitation () is a book by Jon "Smibbs" Erickson about computer security and network security. It was published by No Starch Press in 2003, with a second edition in 2008. All of the examples in the book were developed, compiled, and tested on Gentoo Linux.
Jon Erickson is a computer security expert, with a background in computer science. As of 2011, he worked as a vulnerability researcher and computer security specialist in California.
A bootable CD is included with the book which provides a Linux-based programming and debugging environment for the users.
The content of Hacking moves between programming, networking, and cryptography. The book does not use any notable measure of real-world examples; discussions rarely bring up specific worms and exploits.
The computer programming portion of Hacking takes up over half of the book. This section goes into the development, design, construction, and testing of exploit code, and thus involves some basic assembly programming. The demonstrated attacks range from simple buffer overflows on the stack to complex techniques involving overwriting the global offset table.
While Erickson discusses some countermeasures such as a non-executable stack and how to evade them with return-to-libc attacks, he does not dive into deeper matters without known guaranteed exploits such as address space layout randomization. The book also does not cover the Openwall, GrSecurity, and PaX projects, or kernel exploits.
...
Wikipedia