Hacking For Dummies

Learn to: Defend against the latest Windows® 8 and Linux® hacks Develop an effective ethical hacking plan Protect web applications, databases, laptops, and smartphones Use the latest testing tools and techniques Are you a defender of systems? Then you need this book! Learn how to ward off attacks Until you can think like a bad guy and recognize the vulnerabilities in your systems, you can't build an effective plan to keep your information secure. This book helps you stay on top of the security game! Here's just what you need to know about penetration testing, vulnerability assessments, security best practices, and every aspect of ethical hacking. How a hacker thinks — explore the malicious mindset and learn what steps to take as you plan your ethical hacking program Recognize common tricks — learn about social engineering, password-cracking techniques, and physical security issues Get rolling — choose the right tools and set your plan in motion Demystify mobile security — learn to protect smartphones, laptops, and tablets used in your organization Protect the network — discover weaknesses in TCP/IP and wireless networks and learn to secure them Lock your Windows — fortify your Windows and Linux operating systems against attack App attack — find the vulnerabilities in business applications such as e-mail, web apps, and databases Use what you learn — correct the flaws you find and keep looking for more Open the book and find: Fundamentals of ethical hacking The weak links in most security programs Countermeasures to network vulnerabilities Help establishing an ongoing program How to develop reports on the information you gather Tips for selling your plan to management Case studies of common hack attacks A list of ethical hacking tools and resources

Introduction 1 Part I: Building the Foundation for Ethical Hacking 7 Chapter 1: Introduction to Ethical Hacking 9 Chapter 2: Cracking the Hacker Mindset 25 Chapter 3: Developing Your Ethical Hacking Plan 35 Chapter 4: Hacking Methodology 47 Part II: Putting Ethical Hacking in Motion 63 Chapter 5: Social Engineering 65 Chapter 6: Physical Security 81 Chapter 7: Passwords 93 Part III: Hacking Network Hosts 121 Chapter 8: Network Infrastructure 123 Chapter 9: Wireless LANs 157 Chapter 10: Mobile Devices 185 Part IV: Hacking Operating Systems 197 Chapter 11: Windows 199 Chapter 12: Linux 227 Part V: Hacking Applications 249 Chapter 13: Communication and Messaging Systems 251 Chapter 14: Websites and Applications 277 Chapter 15: Databases and Storage Systems 305 Part VI: Ethical Hacking Aftermath 317 Chapter 16: Reporting Your Results 319 Chapter 17: Plugging Security Holes 325 Chapter 18: Managing Security Processes 331 Part VII: The Part of Tens 339 Chapter 19: Ten Tips for Getting Upper Management Buy–In 341 Chapter 20: Ten Reasons Hacking Is the Only Effective Way to Test 347 Chapter 21: Ten Deadly Mistakes 351 Appendix: Tools and Resources 355 Index 373

Kevin Beaver is an information security consultant, expert witness, and professional speaker with more than 25 years of experience in IT. He specializes in performing independent information security assessments for Fortune 1000 corporations, nonprofits, local and state government agencies, and IT product vendors.