Take a deep dive into network protocol security with a specialist bug ­hunter. James Forshaw is a computer security researcher at Google Project Zero and the creator of the network protocol analysis tool Canape. His discovery of complex design issues in Microsoft Windows earned him the top bug bounty of $100,000 and placed him as the #1 researcher on the published list from Microsoft Security Response Center (MSRC). This comprehensive guide looks at networking from an attacker’s perspective to help you discover, exploit, and ultimately ­protect vulnerabilities.

<ASIN:1593277504>

The book starts with a rundown of networking basics and protocol traffic capture before moving on to static and dynamic protocol analysis, common protocol structures, cryptography, and protocol security. Forshaw then turns his attention to how to find and exploit vulnerabilities, with an overview of common bug classes, fuzzing, debugging, and exhaustion attacks.

Author: James ­Forshaw
Publisher: No Starch Press
Date: Dec 2017
Pages: 336
ISBN: 978-1593277505
Print: 1593277504
Kindle: B071V4DYVC
Audience: Developers looking to understand and discover network vulnerabilities
Level: Intermediate
 

Learn how to:

• Capture, manipulate, and replay packets
• Develop tools to dissect traffic and reverse engineer code to understand the inner workings of a network protocol
• Discover and exploit vulnerabilities such as memory corruptions, authentication bypasses, and denials of service
• Use capture and analysis tools like ­Wireshark and develop your own custom network proxies to manipulate ­network traffic

Follow @bookwatchiprog on Twitter or subscribe to I Programmer's Books RSS feed for each day's new addition to Book Watch and for new reviews.

To have new titles included in Book Watch contact  BookWatch@i-programmer.info