Contents in Detail

Search in book...
Toggle Font Controls
Create new playlist

Name your new playlist

Playlist description (optional)
Sign In

Email address

Password

Forgot Password?

or

Continue with Facebook

Continue with Google
Sign Up

Full Name

Email address

Confirm Email Address

Password

or

Continue with Facebook

Continue with Google

Previous Chapter

Foreword by Katie Moussouris

CONTENTS IN DETAIL

FOREWORD by Katie Moussouris

ACKNOWLEDGMENTS

INTRODUCTION

Why Read This Book?

What’s in This Book?

How to Use This Book

1
THE BASICS OF NETWORKING

Network Architecture and Protocols

The Internet Protocol Suite

Data Encapsulation

Headers, Footers, and Addresses

Data Transmission

Network Routing

My Model for Network Protocol Analysis

2
CAPTURING APPLICATION TRAFFIC

Passive Network Traffic Capture

Quick Primer for Wireshark

Alternative Passive Capture Techniques

System Call Tracing

The strace Utility on Linux

Monitoring Network Connections with DTrace

Process Monitor on Windows

Advantages and Disadvantages of Passive Capture

Active Network Traffic Capture

Network Proxies

Port-Forwarding Proxy

Forwarding an HTTP Proxy

Reverse HTTP Proxy

3
NETWORK PROTOCOL STRUCTURES

Binary Protocol Structures

Text and Human-Readable Data

Variable Binary Length Data

Dates and Times

POSIX/Unix Time

Windows FILETIME

Tag, Length, Value Pattern

Multiplexing and Fragmentation

Network Address Information

Structured Binary Formats

Text Protocol Structures

Dates and Times

Variable-Length Data

Structured Text Formats

Encoding Binary Data

4
ADVANCED APPLICATION TRAFFIC CAPTURE

Rerouting Traffic

Using Traceroute

Configuring a Router

Enabling Routing on Windows

Enabling Routing on *nix

Network Address Translation

Configuring SNAT on Linux

Forwarding Traffic to a Gateway

5
ANALYSIS FROM THE WIRE

The Traffic-Producing Application: SuperFunkyChat

Starting the Server

Starting Clients

Communicating Between Clients

A Crash Course in Analysis with Wireshark

Generating Network Traffic and Capturing Packets

Reading the Contents of a TCP Session

Identifying Packet Structure with Hex Dump

Viewing Individual Packets

Determining the Protocol Structure

Testing Our Assumptions

Dissecting the Protocol with Python

Developing Wireshark Dissectors in Lua

Creating the Dissector

The Lua Dissection

Parsing a Message Packet

Using a Proxy to Actively Analyze Traffic

Setting Up the Proxy

Protocol Analysis Using a Proxy

Adding Basic Protocol Parsing

Changing Protocol Behavior

6
APPLICATION REVERSE ENGINEERING

Compilers, Interpreters, and Assemblers

Interpreted Languages

Compiled Languages

Static vs. Dynamic Linking

The x86 Architecture

The Instruction Set Architecture

Operating System Basics

Executable File Formats

Processes and Threads

Operating System Networking Interface

Application Binary Interface

Static Reverse Engineering

A Quick Guide to Using IDA Pro Free Edition

Analyzing Stack Variables and Arguments

Identifying Key Functionality

Dynamic Reverse Engineering

Setting Breakpoints

Debugger Windows

Where to Set Breakpoints?

Reverse Engineering Managed Languages

.NET Applications

Java Applications

Dealing with Obfuscation

Reverse Engineering Resources

7
NETWORK PROTOCOL SECURITY

Encryption Algorithms

Substitution Ciphers

Random Number Generators

Symmetric Key Cryptography

Block Cipher Modes

Block Cipher Padding

Padding Oracle Attack

Asymmetric Key Cryptography

Diffie–Hellman Key Exchange

Signature Algorithms

Cryptographic Hashing Algorithms

Asymmetric Signature Algorithms

Message Authentication Codes

Public Key Infrastructure

X.509 Certificates

Verifying a Certificate Chain

Case Study: Transport Layer Security

The TLS Handshake

Initial Negotiation

Endpoint Authentication

Establishing Encryption

Meeting Security Requirements

8
IMPLEMENTING THE NETWORK PROTOCOL

Replaying Existing Captured Network Traffic

Capturing Traffic with Netcat

Using Python to Resend Captured UDP Traffic

Repurposing Our Analysis Proxy

Repurposing Existing Executable Code

Repurposing Code in .NET Applications

Repurposing Code in Java Applications

Unmanaged Executables

Encryption and Dealing with TLS

Learning About the Encryption In Use

Decrypting the TLS Traffic

9
THE ROOT CAUSES OF VULNERABILITIES

Vulnerability Classes

Remote Code Execution

Denial-of-Service

Information Disclosure

Authentication Bypass

Authorization Bypass

Memory Corruption Vulnerabilities

Memory-Safe vs. Memory-Unsafe Programming Languages

Memory Buffer Overflows

Out-of-Bounds Buffer Indexing

Data Expansion Attack

Dynamic Memory Allocation Failures

Default or Hardcoded Credentials

User Enumeration

Incorrect Resource Access

Canonicalization

Memory Exhaustion Attacks

Storage Exhaustion Attacks

CPU Exhaustion Attacks

Algorithmic Complexity

Configurable Cryptography

Format String Vulnerabilities

Command Injection

Text-Encoding Character Replacement

10
FINDING AND EXPLOITING SECURITY VULNERABILITIES

The Simplest Fuzz Test

Mutation Fuzzer

Generating Test Cases

Vulnerability Triaging

Debugging Applications

Improving Your Chances of Finding the Root Cause of a Crash

Exploiting Common Vulnerabilities

Exploiting Memory Corruption Vulnerabilities

Arbitrary Memory Write Vulnerability

Writing Shell Code

Getting Started

Simple Debugging Technique

Calling System Calls

Executing the Other Programs

Generating Shell Code with Metasploit

Memory Corruption Exploit Mitigations

Data Execution Prevention

Return-Oriented Programming Counter-Exploit

Address Space Layout Randomization (ASLR)

Detecting Stack Overflows with Memory Canaries

NETWORK PROTOCOL ANALYSIS TOOLKIT

Passive Network Protocol Capture and Analysis Tools

Microsoft Message Analyzer

TCPDump and LibPCAP

Active Network Capture and Analysis

Network Connectivity and Protocol Testing

Web Application Testing

Zed Attack Proxy (ZAP)

Fuzzing, Packet Generation, and Vulnerability Exploitation Frameworks

American Fuzzy Lop (AFL)

Metasploit Framework

Network Spoofing and Redirection

Executable Reverse Engineering

Java Decompiler (JD)

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.