TLFeBOOK Register for Free Membership to solutions@syngress.com Over the last few years, Syngress has published many best-selling and critically acclaimed books, including Tom Shinder’s Configuring ISA Server 2000, Brian Caswell and Jay Beale’s Snort 2.0 Intrusion Detection, and Angela Orebaugh and Gilbert Ramirez’s Ethereal Packet Sniffing One of the reasons for the success of these books has been our unique solutions@syngress.com program Through this site, we’ve been able to provide readers a real time extension to the printed book As a registered owner of this book, you will qualify for free access to our members-only solutions@syngress.com program Once you have registered, you will enjoy several benefits, including: ■ Four downloadable e-booklets on topics related to the book Each booklet is approximately 20-30 pages in Adobe PDF format They have been selected by our editors from other best-selling Syngress books as providing topic coverage that is directly related to the coverage in this book ■ A comprehensive FAQ page that consolidates all of the key points of this book into an easy to search web page, providing you with the concise, easy to access data you need to perform your job ■ A “From the Author” Forum that allows the authors of this book to post timely updates links to related sites, or additional topic coverage that may have been requested by readers Just visit us at www.syngress.com/solutions and follow the simple registration process You will need to have this book with you when you register Thank you for giving us the opportunity to serve your needs And be sure to let us know if there is anything else we can to make your job easier TLFeBOOK TLFeBOOK Hacking a Terror Network THE SILENT THREAT OF COVERT CHANNELS Russ Rogers Matthew G Devost Technical Editor TLFeBOOK Syngress Publishing, Inc., the author(s), and any person or firm involved in the writing, editing, or production (collectively “Makers”) of this book (“the Work”) not guarantee or warrant the results to be obtained from the Work There is no guarantee of any kind, expressed or implied, regarding the Work or its contents.The Work is sold AS IS and WITHOUT WARRANTY You may have other legal rights, which vary from state to state In no event will Makers be liable to you for damages, including any loss of profits, lost savings, or other incidental or consequential damages arising out from the Work or its contents Because some states not allow the exclusion or limitation of liability for consequential or incidental damages, the above limitation may not apply to you You should always use reasonable care, including backup and other appropriate precautions, when working with computers, networks, data, and files Syngress Media®, Syngress®, “Career Advancement Through Skill Enhancement®,” “Ask the Author UPDATE®,” and “Hack Proofing®” are registered trademarks of Syngress Publishing, Inc “Syngress:The Definition of a Serious Security Library”™, “Mission Critical™,” and “The Only Way to Stop a Hacker is to Think Like One™” are trademarks of Syngress Publishing, Inc Brands and product names mentioned in this book are trademarks or service marks of their respective companies KEY SERIAL NUMBER 001 HJIRTCV764 002 PO9873D5FG 003 829KM8NJH2 004 GHC432N966 005 CVPLQ6WQ23 006 VBP965T5T5 007 HJJJ863WD3E 008 2987GVTWMK 009 629MP5SDJT 010 IMWQ295T6T PUBLISHED BY Syngress Publishing, Inc 800 Hingham Street Rockland, MA 02370 Hacking a Terror Network: The Silent Threat of Covert Channels Copyright © 2005 by Syngress Publishing, Inc All rights reserved Printed in the United States of America Except as permitted under the Copyright Act of 1976, no part of this publication may be reproduced or distributed in any form or by any means, or stored in a database or retrieval system, without the prior written permission of the publisher, with the exception that the program listings may be entered, stored, and executed in a computer system, but they may not be reproduced for publication Printed in the United States of America ISBN: 1-928994-98-9 Publisher: Andrew Williams Acquisitions Editor: Gary Byrne Technical Editor: Matthew G Devost Page Layout and Art: Patricia Lupien Copy Editor: Adrienne Rebello Cover Designer: Michael Kavish Distributed by O’Reilly Media, Inc in the United States and Canada For information on rights and translations, contact Matt Pedersen, Director of Sales and Rights, at Syngress Publishing; email matt@syngress.com or fax to 781-681-3585 TLFeBOOK Acknowledgments Syngress would like to acknowledge the following people for their kindness and support in making this book possible Syngress books are now distributed in the United States and Canada by O’Reilly Media, Inc.The enthusiasm and work ethic at O’Reilly are incredible, and we would like to thank everyone there for their time and efforts to bring Syngress books to market:Tim O’Reilly, Laura Baldwin, Mark Brokering, Mike Leonard, Donna Selenko, Bonnie Sheehan, Cindy Davis, Grant Kikkert, Opol Matsutaro, Steve Hazelwood, Mark Wilson, Rick Brown, Leslie Becker, Jill Lothrop,Tim Hinton, Kyle Hart, Sara Winge, C J Rayhill, Peter Pardo, Leslie Crandell, Valerie Dow, Regina Aggio, Pascal Honscher, Preston Paull, Susan Thompson, Bruce Stewart, Laura Schmier, Sue Willing, Mark Jacobsen, Betsy Waliszewski, Dawn Mann, Kathryn Barrett, John Chodacki, Rob Bullington, and Aileen Berg The incredibly hard-working team at Elsevier Science, including Jonathan Bunkell, Ian Seager, Duncan Enright, David Burton, Rosanna Ramacciotti, Robert Fairbrother, Miguel Sanchez, Klaus Beran, Emma Wyatt, Rosie Moss, Chris Hossack, Mark Hunt, and Krista Leppiko, for making certain that our vision remains worldwide in scope David Buckland, Marie Chieng, Lucy Chong, Leslie Lim, Audrey Gan, Pang Ai Hua, and Joseph Chan of STP Distributors for the enthusiasm with which they receive our books Kwon Sung June at Acorn Publishing for his support David Scott, Tricia Wilden, Marilla Burgess, Annette Scott, Andrew Swaffer, Stephen O’Donoghue, Bec Lowe, and Mark Langley of Woodslane for distributing our books throughout Australia, New Zealand, Papua New Guinea, Fiji Tonga, Solomon Islands, and the Cook Islands Winston Lim of Global Publishing for his help and support with distribution of Syngress books in the Philippines v TLFeBOOK Author Russ Rogers (CISSP, CISM, IAM, IEM) is a Co-Founder, Chief Executive Officer, and Principal Security Consultant for Security Horizon, Inc., a Colorado-based professional security services and training provider and veteran-owned small business Russ is a key contributor to Security Horizon’s technology efforts and leads the technical security practice and the services business development efforts Russ is a United States Air Force Veteran and has served in military and contract support for the National Security Agency and the Defense Information Systems Agency He served as a Certified Arabic Linguist during his time in the military and is also the editor-in-chief of The Security Journal and occasional staff member for the Black Hat Briefings Russ holds an associate’s degree in applied communications technology from the Community College of the Air Force, a bachelor’s degree from the University of Maryland in computer information systems, and a master’s degree from the University of Maryland in computer systems management Russ is a member of the Information System Security Association (ISSA) and the Information System Audit and Control Association (ISACA) He also serves as the Professor of Network Security at the University of Advancing Technology (uat.edu) in Tempe, AZ Russ is the author of Hacking a Terror Network:The Silent Threat of Covert Channels (Syngress Publishing, ISBN: 1-928994-98-9) He has contributed to many Syngress books, including Stealing the Network: How to Own a Continent (ISBN: 1-931836-05-1), Security Assessment: Case Studies for Implementing the NSA IAM (ISBN 1-932266-96-8), WarDriving, Drive, Detect, Defend: A Guide to Wireless Security (ISBN: 1-931836-03-5), and SSCP Study Guide and DVD Training System (ISBN: 1-931846-80-9) vi TLFeBOOK Technical Editor Matthew G Devost is President and CEO of the Terrorism Research Center, Inc., overseeing all research, analysis, assessment, and training programs In addition to his duties as President, Matthew also provides strategic consulting services to select international governments and corporations on issues of counter-terrorism, information warfare and security, critical infrastructure protection, and homeland security He cofounded and serves as Executive Director of Technical Defense, Inc., a highly specialized information security consultancy as well as holds an Adjunct Professor position at Georgetown University Previously, Matthew was the Director of Operations for Professional Services at Counterpane Internet Security as well as Security Design International, Inc., where he led a team of technical information security consultants providing vulnerability assessments and information security consulting services to international corporations and governments In addition, he worked as the Director of Intelligence Analysis for iDefense, a Senior INFOSEC Engineer at SAIC, and as a U.S Customs Inspector Matthew has appeared on numerous national and international television programs, as well as dozens of other domestic and international radio and television programs as an expert on terrorism and information warfare and has lectured or published for the National Defense University; the United States Intelligence and Law Enforcement Communities; the Swedish, Australian, Japanese, and New Zealand governments; Georgetown University; American University; George Washington University; and a number of popular press books and magazines, academic journals, and more than 100 international conferences He is co-author of (Syngress, ISBN: 1931836-11-6) vii TLFeBOOK He serves on the Defense Science Board Task Force on Critical Homeland Infrastructure Protection Matthew serves as a Senior Adviser to the Airline Pilots Association National Security Committee, sits on the Board of Directors as a Founding Member of the Cyber Conflict Studies Association, and is an adjunct member of the Los Angeles Terrorism Early Warning Group He holds a B.A degree from St Michael’s College and a Master of Arts Degree in Political Science from the University of Vermont CD Creator Michele Fincher (IAM, IEM) is a Security Consultant and trainer for Security Horizon, Inc., a professional security services and training provider and veteran-owned small business Prior to joining Security Horizon, Michele worked for a research and software development firm and assisted in the development and instruction of its Steganography Investigator Training Course Michele is a United States Air Force veteran She served as a Communications Electronics officer and finished her career as an Assistant Professor at the United States Air Force Academy Michele holds a Bachelor of Science from the United States Air Force Academy and a Master of Science from Auburn University viii TLFeBOOK TLFeBOOK The source code for a work means the preferred form of the work for making modifications to it For an executable work, complete source code means all the source code for all modules it contains, plus any associated interface definition files, plus the scripts used to control compilation and installation of the executable However, as a special exception, the source code distributed need not include anything that is normally distributed (in either source or binary form) with the major components (compiler, kernel, and so on) of the operating system on which the executable runs, unless that component itself accompanies the executable If distribution of executable or object code is made by offering access to copy from a designated place, then offering equivalent access to copy the source code from the same place counts as distribution of the source code, even though third parties are not compelled to copy the source along with the object code You may not copy, modify, sublicense, or distribute the Program except as expressly provided under this License Any attempt otherwise to copy, modify, sublicense or distribute the Program is void, and will automatically terminate your rights under this License However, parties who have received copies, or rights, from you under this License will not have their licenses terminated so long as such parties remain in full compliance You are not required to accept this License, since you have not signed it However, nothing else grants you permission to modify or distribute the Program or its derivative works.These actions are prohibited by law if you not accept this License.Therefore, by modifying or distributing the Program (or any work based on the Program), you indicate your acceptance of this License to so, and all its terms and conditions for copying, distributing or modifying the Program or works based on it Each time you redistribute the Program (or any work based on the Program), the recipient automatically receives a license from the original licensor to copy, distribute or modify the Program subject to these terms and conditions.You may not impose any further restrictions on the recipients’ exercise of the rights granted herein.You are not responsible for enforcing compliance by third parties to this License If, as a consequence of a court judgment or allegation of patent infringement or for any other reason (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they not excuse you from the conditions of this License If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Program at all For example, if a patent license would not permit royalty-free redistribution of the Program by all those who receive copies directly or indirectly through you, then the only way you could satisfy both it and this TLFeBOOK License would be to refrain entirely from distribution of the Program If any portion of this section is held invalid or unenforceable under any particular circumstance, the balance of the section is intended to apply and the section as a whole is intended to apply in other circumstances It is not the purpose of this section to induce you to infringe any patents or other property right claims or to contest validity of any such claims; this section has the sole purpose of protecting the integrity of the free software distribution system, which is implemented by public license practices Many people have made generous contributions to the wide range of software distributed through that system in reliance on consistent application of that system; it is up to the author/donor to decide if he or she is willing to distribute software through any other system and a licensee cannot impose that choice This section is intended to make thoroughly clear what is believed to be a consequence of the rest of this License If the distribution and/or use of the Program is restricted in certain countries either by patents or by copyrighted interfaces, the original copyright holder who places the Program under this License may add an explicit geographical distribution limitation excluding those countries, so that distribution is permitted only in or among countries not thus excluded In such case, this License incorporates the limitation as if written in the body of this License The Free Software Foundation may publish revised and/or new versions of the General Public License from time to time Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns Each version is given a distinguishing version number If the Program specifies a version number of this License which applies to it and “any later version”, you have the option of following the terms and conditions either of that version or of any later version published by the Free Software Foundation If the Program does not specify a version number of this License, you may choose any version ever published by the Free Software Foundation 10 If you wish to incorporate parts of the Program into other free programs whose distribution conditions are different, write to the author to ask for permission For software which is copyrighted by the Free Software Foundation, write to the Free Software Foundation; we sometimes make exceptions for this Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally NO WARRANTY 11 BECAUSE THE PROGRAM IS LICENSED FREE OF CHARGE,THERE IS NO WARRANTY FOR THE PROGRAM,TO THE EXTENT PERMITTED BY APPLICABLE LAW EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE PROTLFeBOOK GRAM “AS IS” WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO,THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE PROGRAM IS WITH YOU SHOULD THE PROGRAM PROVE DEFECTIVE,YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION 12 IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE THE PROGRAM AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE PROGRAM (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE PROGRAM TO OPERATE WITH ANY OTHER PROGRAMS), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES END OF TERMS AND CONDITIONS How to Apply These Terms to Your New Programs If you develop a new program, and you want it to be of the greatest possible use to the public, the best way to achieve this is to make it free software which everyone can redistribute and change under these terms To so, attach the following notices to the program It is safest to attach them to the start of each source file to most effectively convey the exclusion of warranty; and each file should have at least the “copyright” line and a pointer to where the full notice is found one line to give the program’s name and an idea of what it does Copyright (C) yyyy name of author This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version of the License, or (at your option) any later version This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE See the GNU General Public License for more details TLFeBOOK You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA Also add information on how to contact you by electronic and paper mail If the program is interactive, make it output a short notice like this when it starts in an interactive mode: Gnomovision version 69, Copyright (C) year name of author Gnomovision comes with ABSOLUTELY NO WARRANTY; for details type `show w’ This is free software, and you are welcome to redistribute it under certain conditions; type `show c’ for details The hypothetical commands ‘show w’ and ‘show c’ should show the appropriate parts of the General Public License Of course, the commands you use may be called something other than ‘show w’ and ‘show c’; they could even be mouse-clicks or menu items— whatever suits your program You should also get your employer (if you work as a programmer) or your school, if any, to sign a “copyright disclaimer” for the program, if necessary Here is a sample; alter the names: Yoyodyne, Inc., hereby disclaims all copyright interest in the program `Gnomovision’ (which makes passes at compilers) written by James Hacker signature of Ty Coon, April 1989 Ty Coon, President of Vice This General Public License does not permit incorporating your program into proprietary programs If your program is a subroutine library, you may consider it more useful to permit linking proprietary applications with the library If this is what you want to do, use the GNU Library General Public License instead of this License TLFeBOOK SYNGRESS PUBLISHING LICENSE AGREEMENT THIS PRODUCT (THE “PRODUCT”) CONTAINS PROPRIETARY SOFTWARE, DATA AND INFORMATION (INCLUDING DOCUMENTATION) OWNED BY SYNGRESS PUBLISHING, INC (“SYNGRESS”) AND ITS LICENSORS.YOUR RIGHT TO USE THE PRODUCT IS GOVERNED BY THE TERMS AND CONDITIONS OF THIS AGREEMENT LICENSE: Throughout this License Agreement,“you” shall mean either the individual or the entity whose agent opens this package You are granted a limited, non-exclusive and non-transferable license to use the Product subject to the following terms: (i) If you have licensed a single user version of the Product, the Product may only be used on a single computer (i.e., a single CPU) If you licensed and paid the fee applicable to a local area network or wide area network version of the Product, you are subject to the terms of the following subparagraph (ii) (ii) If you have licensed a local area network version, you may use the Product on unlimited workstations located in one single building selected by you that is served by such local area network If you have licensed a wide area network version, you may use the Product on unlimited workstations located in multiple buildings on the same site selected by you that is served by such wide area network; provided, however, that any building will not be considered located in the same site if it is more than five (5) miles away from any building included in such site In addition, you may only use a local area or wide area network version of the Product on one single server If you wish to use the Product on more than one server, you must obtain written authorization from Syngress and pay additional fees (iii) You may make one copy of the Product for back-up purposes only and you must maintain an accurate record as to the location of the back-up at all times PROPRIETARY RIGHTS; RESTRICTIONS ON USE AND TRANSFER: All rights (including patent and copyright) in and to the Product are owned by Syngress and its licensors.You are the owner of the enclosed disc on which the Product is recorded.You may not use, copy, decompile, disassemble, reverse engineer, modify, reproduce, create derivative works, transmit, distribute, sublicense, store in a database or retrieval system of any kind, rent or transfer the Product, or any portion thereof, in any form or by any means (including electronically or otherwise) except as expressly provided for in this License Agreement.You must reproduce the copyright notices, trademark notices, legends and logos of Syngress and its licensors that appear on the Product on the back-up copy of the Product which you are permitted to make hereunder.All rights in the Product not expressly granted herein are reserved by Syngress and its licensors TERM: This License Agreement is effective until terminated It will terminate if you fail to comply with any term or condition of this License Agreement Upon termination, you TLFeBOOK are obligated to return to Syngress the Product together with all copies thereof and to purge and destroy all copies of the Product included in any and all systems, servers and facilities DISCLAIMER OF WARRANTY: THE PRODUCT AND THE BACK-UP COPY OF THE PRODUCT ARE LICENSED “AS IS” SYNGRESS, ITS LICENSORS AND THE AUTHORS MAKE NO WARRANTIES, EXPRESS OR IMPLIED, AS TO RESULTS TO BE OBTAINED BY ANY PERSON OR ENTITY FROM USE OF THE PRODUCT AND/OR ANY INFORMATION OR DATA INCLUDED THEREIN SYNGRESS, ITS LICENSORS AND THE AUTHORS MAKE NO EXPRESS OR IMPLIED WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE OR USE WITH RESPECT TO THE PRODUCT AND/OR ANY INFORMATION OR DATA INCLUDED THEREIN IN ADDITION, SYNGRESS, ITS LICENSORS AND THE AUTHORS MAKE NO WARRANTY REGARDING THE ACCURACY, ADEQUACY OR COMPLETENESS OF THE PRODUCT AND/OR ANY INFORMATION OR DATA INCLUDED THEREIN NEITHER SYNGRESS, ANY OF ITS LICENSORS, NOR THE AUTHORS WARRANT THAT THE FUNCTIONS CONTAINED IN THE PRODUCT WILL MEET YOUR REQUIREMENTS OR THAT THE OPERATION OF THE PRODUCT WILL BE UNINTERRUPTED OR ERROR FREE.YOU ASSUME THE ENTIRE RISK WITH RESPECT TO THE QUALITY AND PERFORMANCE OF THE PRODUCT LIMITED WARRANTY FOR DISC: To the original licensee only, Syngress warrants that the enclosed disc on which the Product is recorded is free from defects in materials and workmanship under normal use and service for a period of ninety (90) days from the date of purchase In the event of a defect in the disc covered by the foregoing warranty, Syngress will replace the disc LIMITATION OF LIABILITY: NEITHER SYNGRESS, ITS LICENSORS NOR THE AUTHORS SHALL BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, PUNITIVE, CONSEQUENTIAL OR SIMILAR DAMAGES, SUCH AS BUT NOT LIMITED TO, LOSS OF ANTICIPATED PROFITS OR BENEFITS, RESULTING FROM THE USE OR INABILITY TO USE THE PRODUCT EVEN IF ANY OF THEM HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.THIS LIMITATION OF LIABILITY SHALL APPLY TO ANY CLAIM OR CAUSE WHATSOEVER WHETHER SUCH CLAIM OR CAUSE ARISES IN TLFeBOOK CONTRACT, TORT, OR OTHERWISE Some states not allow the exclusion or limitation of indirect, special or consequential damages, so the above limitation may not apply to you U.S GOVERNMENT RESTRICTED RIGHTS If the Product is acquired by or for the U.S Government then it is provided with Restricted Rights Use, duplication or disclosure by the U.S Government is subject to the restrictions set forth in FAR 52.22719 The contractor/manufacturer is Syngress Publishing, Inc at 800 Hingham Street, Rockland, MA 02370 GENERAL: This License Agreement constitutes the entire agreement between the parties relating to the Product.The terms of any Purchase Order shall have no effect on the terms of this License Agreement Failure of Syngress to insist at any time on strict compliance with this License Agreement shall not constitute a waiver of any rights under this License Agreement This License Agreement shall be construed and governed in accordance with the laws of the Commonwealth of Massachusetts If any provision of this License Agreement is held to be contrary to law, that provision will be enforced to the maximum extent permissible and the remaining provisions will remain in full force and effect *If you not agree, please return this product to the place of purchase for a refund TLFeBOOK Other books from Russ Rogers and Security Horizon, Inc.… AVAILABLE NOW! ORDER at www.syngress.com Security Assessment: Case Studies for Implementing the NSA IAM Russ Rogers, Greg Miles, Ed Fuller, Ted Dykstra The National Security Agency's INFOSEC Assessment Methodology (IAM) provides guidelines for performing an analysis of how information is handled within an organization: looking at the systems that store, transfer, and process information It also analyzes the impact to an organization if there is a loss of integrity, confidentiality, or availability This book shows how to a complete security assessment based on the NSA’s guidelines ISBN: 1-932266-96-8 Price: $69.95 U.S $89.95 CAN Stealing the Network: How to Own a Continent AVAILABLE NOW! ORDER at www.syngress.com 131ah, Russ Rogers, Jay Beale, Joe Grand, Fyodor, FX, Paul Craig, Timothy Mullen (Thor), Tom Parker, Ryan Russell, Kevin D Mitnick The first book in the “Stealing the Network” series was called a “blockbuster” by Wired magazine, a “refreshing change from more traditional computer books” by Slashdot.org, and “an entertaining and informative look at the weapons and tactics employed by those who attack and defend digital systems” by Amazon.com This followon book once again combines a set of fictional stories with real technology to show readers the danger that lurks in the shadows of the information security industry Could hackers take over a continent? ISBN: 1-931836-05-1 Price: $49.95 US $69.95 CAN TLFeBOOK Other books from Russ Rogers and Security Horizon, Inc.… AVAILABLE NOW! ORDER at www.syngress.com WarDriving: Drive, Detect, Defend A Guide to Wireless Security Chris Hurley, Russ Rogers, Frank Thornton, Michael Puchol Wireless networks have become a way of life in the past two years As more wireless networks are deployed the need to secure them increases This book educates users of wireless networks as well as those who run the networks about the insecurities associated with wireless networking This effort is called WarDriving In order to successfully WarDrive there are hardware and software tool required This book covers those tools, along with cost estimates and recommendations Since there are hundreds of possible configurations that can be used for WarDriving, some of the most popular are presented to help readers decide what to buy for their own WarDriving setup ISBN: 1-931836-03-5 Price: $49.95 U.S $69.95 CAN SSCP Study Guide and DVD Training System By Russ Rogers, et al AVAILABLE NOW! ORDER at www.syngress.com A one-of-a-kind integration of text, DVD-quality instructor led training, and Web-based exam simulation and remediation This system gives you 100% coverage of the official International Information Systems Security Certification Consortium, Inc (ISC)2 SSCP security domains plus test preparation software for the edge you need to pass the exam on your first try All seven SSCP domains are covered in full: Access Controls; Administration; Audit and Monitoring; Risk, Response and Recovery; Cryptography; Data Communications; and Malicious Code/Malware This package includes a Study Guide, a DVD containing instructor led training, and Web-based exam simulation and remediation ISBN: 1-931836-80-9 Price: $59.95 US $92.95 CAN TLFeBOOK Jay Beale’s Open Source Security Series AVAILABLE MOW! order @ www.syngress.com Nessus Network Auditing Crackers constantly probe machines looking for both old and new vulnerabilities In order to avoid becoming a casualty of a casual cracker, savvy sys admins audit their own machines before they're probed by hostile outsiders (or even hostile insiders) Nessus is the premier Open Source vulnerability assessment tool, and was recently voted the “most popular” open source security tool of any kind This is the first book available on Nessus and it is written by the world's premier Nessus developers led by the creator of Nessus, Renaud Deraison ISBN: 1-931836-08-6 Price: $49.95 U.S $69.95 CAN AVAILABLE NOW Ethereal Packet Sniffing order @ Ethereal offers more protocol decoding and reassembly www.syngress.com than any free sniffer out there and ranks well among the commercial tools You’ve all used tools like tcpdump or windump to examine individual packets, but Ethereal makes it easier to make sense of a stream of ongoing network communications Ethereal not only makes network troubleshooting work far easier, but also aids greatly in network forensics, the art of finding and examining an attack, by giving a better “big picture” view Ethereal Packet Sniffing will show you how to make the most out of your use of Ethereal ISBN: 1-932266-82-8 Price: $49.95 U.S $77.95 CAN AVAILABLE NOW order @ www.syngress.com Snort 2.1 Intrusion Detection, Second Edition Called “the leader in the Snort IDS book arms race” by Richard Bejtlich, top Amazon reviewer, this brand-new edition of the best-selling Snort book covers all the latest features of a major upgrade to the product and includes a bonus DVD with Snort 2.1 and other utilities ISBN: 1-931836-04-3 Price: $49.95 U.S $69.95 CAN TLFeBOOK AVAILABLE NOW! ORDER at www.syngress.com The Mezonic Agenda: Hacking the Presidency Dr Herbert H Thompson and Spyros Nomikos The Mezonic Agenda: Hacking the Presidency is the first Cyber-Thriller that allows the reader to “hack along” with both the heroes and villains of this fictional narrative using the accompanying CD containing real, working versions of all the applications described and exploited in the fictional narrative of the book The Mezonic Agenda deals with some of the most pressing topics in technology and computer security today including: reverse engineering, cryptography, buffer overflows, and steganography The book tells the tale of criminal hackers attempting to compromise the results of a presidential election for their own gain ISBN: 1-931836-83-3 Price: $34.95 U.S $50.95 CAN Penetration Testing with Google Hacks Johnny Long, Foreword by Ed Skoudis AVAILABLE NOW! ORDER at www.syngress.com Google, the most popular search engine worldwide, provides web surfers with an easy-to-use guide to the Internet, with web and image searches, language translation, and a range of features that make web navigation simple enough for even the novice user What many users don’t realize is that the deceptively simple components that make Google so easy to use are the same features that generously unlock security flaws for the malicious hacker Vulnerabilities in website security can be discovered through Google hacking, techniques applied to the search engine by computer criminals, identity thieves, and even terrorists to uncover secure information This book beats Google hackers to the punch, equipping web administrators with penetration testing applications to ensure their site is invulnerable to a hacker’s search ISBN: 1-931836-36-1 Price: $49.95 USA $65.95 CAN TLFeBOOK Game Console Hacking: Xbox, PlayStation, Nintendo, Atari, & Gamepark 32 AVAILABLE NOW! ORDER at www.syngress.com Joe Grand and Albert Yarusso In November of 1977, Atari shipped its first 400,000 Video Computer Systems Since that time, over 1.2 billion consoles have been sold worldwide, and a large percentage of those are still hanging around as “classic systems.” An avid (some would say rabid) community of video game hackers and hard-core gamers has developed around a common passion to push their consoles, and the games themselves, beyond the functionality originally intended by the manufacturers This book is the first on the market to cover the entire range of consoles produced over the last 25 years It provides detailed instructions on how to customize and reconfigure consoles to a wide variety of ends—from the cosmetic case modifications to the ambitious porting of Linux to the Nintendo GameCube Platforms covered in this book include Atari, Sega, Nintendo, PlayStation, Xbox, and Game Boy ISBN: 1-931836-31-0 Price: $39.95 US $57.95 CAN Wireless Hacking: Projects for Wi-Fi Enthusiasts AVAILABLE NOW! ORDER at www.syngress.com Lee Barken, with Matt Fanady, Debi Jones, Alan Koebrick, and Michael Mee As the cost of wireless technology drops, the number of Wi-Fi users continues to grow Millions of people have discovered the joy and delight of “cutting the cord.” Many of those people are looking for ways to take the next step and try out some of the cutting edge techniques for building and deploying “homebrew” Wi-Fi networks, both large and small This book shows Wi-Fi enthusiasts and consumers of Wi-Fi LANs who want to modify their Wi-Fi hardware how to build and deploy “homebrew” Wi-Fi networks, both large and small ISBN: 1-931836-37-X Price: $39.95 US $57.95 CAN TLFeBOOK AVAILABLE NOW! ORDER at www.syngress.com Programmer's Ultimate Security DeskRef James C Foster The Programmer’s Ultimate Security DeskRef is the only complete desk reference covering multiple languages and their inherent security issues It will serve as the programming encyclopedia for almost every major language in use While there are many books starting to address the broad subject of security best practices within the software development lifecycle, none has yet to address the overarching technical problems of incorrect function usage Most books fail to draw the line from covering best practices security principles to actual code implementation This book bridges that gap and covers the most popular programming languages such as Java, Perl, C++, C#, and Visual Basic ISBN: 1-932266-72-0 Price: $49.95 U.S $72.95 CAN Windows to Linux Migration Toolkit David Allen AVAILABLE NOW! ORDER at www.syngress.com This book will provide the system administrator all the information, tools, and guidance, including valuable fully functioning scripts to migrate from Windows NT/2000 to any Linux variant It allows a company to fully migrate away from Microsoft Active Directory and Exchange Server, and add anti-virus/anti-spam features for free and provides migration process planning, automated migration scripts, anti-virus/anti-spam solutions, and specific migration and deployment details for all relevant technologies The book helps readers fine-tune their migration services to make them more efficient, thorough, feature-enhanced, and cost-effective by utilizing migration scripts and best practices gleaned from the author's many years of realworld migrations in large and small companies The CD includes valuable automated scripts for migrating any flavor of Windows to Linux ISBN: 1-931836-39-6 Price: $49.95 USA $72.95 CAN TLFeBOOK Microsoft Log Parser Toolkit Gabriele Giuseppini and Mark Burnett AVAILABLE NOW! ORDER at www.syngress.com Do you want to find Brute Force Attacks against your Exchange Server? Would you like to know who is spamming you? Do you need to monitor the performance of your IIS Server? Are there intruders out there you would like to find? Would you like to build user logon reports from your Windows Server? Would you like working scripts to automate all of these tasks and many more for you? If so, Microsoft Log Parser Toolkit is the book for you ISBN: 1-932266-52-6 Price: $39.95 US $57.95 CAN Inside the SPAM Cartel Spammer-X AVAILABLE NOW! ORDER at www.syngress.com “You may hate spam and think all spammers are evil, but listen to my story and see why I this and more importantly, HOW.” For most people, the term SPAM conjures up the image of hundreds of annoying, and at times offensive, e-mails flooding your inbox every week But for a few, SPAM is a way of life that delivers an adrenaline rush fueled by cash, danger, retribution, porn and the avoidance of local, federal, and international law enforcement agencies Inside the SPAM Cartel offers readers a neverbefore view inside this dark sub-economy You’ll meet the characters that control the flow of money as well as the hackers and programmers committed to keeping the enterprise up and running You may disagree with their objectives, but you can’t help but to marvel at their ingenuity and resourcefulness in defeating spam filters, avoiding being identified, and staying one step ahead of the law ISBN: 1-932266-86-0 Price: $49.95 US $72.95 CAN TLFeBOOK Syngress: The Definition of a Serious Security Library Syn•gress (sin-gres): noun, sing Freedom from risk or danger; safety See security AVAILABLE NOW! ORDER at www.syngress.com Zero Day Exploit: Countdown to Darkness Rob Shein, Marcus H Sachs, David Litchfield This is a realistic and downright scary tale of cyber-terrorism It takes the reader from the casinos of Las Vegas to the slums of Manila to FBI Headquarters, as an elite team of security hotshots race to stop Islamic terrorists from crippling the economies of the Western world Written by the world’s leading counterterrorism experts, which makes it all the more chilling for its authenticity ISBN: 1-931836-09-4 Price: $49.95 USA $69.95 CAN AVAILABLE NOW! ORDER at www.syngress.com Richard Thieme’s Islands in the Clickstream: Reflections on Life in a Virtual World Richard Thieme is one of the most visible commentators on technology and society, appearing regularly on CNN radio, TechTV, and various other national media outlets He is also in great demand as a public speaker, delivering his “Human Dimension of Technology” talk to over 50,000 live audience members each year Islands in the Clickstream is a single volume “best of Richard Thieme.” ISBN: 1-931836-22-1 Price: $29.95 US $43.95 CAN TLFeBOOK ... and arrogance could be used against them What the Americans saw as the boundary of the Internet was actually a deep shadow that hid threats and dangers, often overlooked Salah hid in those shadows,... good against the warm skin of his hand Salah Though born with a different name, he had chosen Salah because of the famous Salah Al-Din, known for establishing the Abbasid dynasty In 1169, Salah Aldin... way to attack American interests A decade-old grudge against the West comes to fruition as a child follows the path of the father’s hatred for America and vows to avenge a brother .The American