As a registered member of SearchAppSecurity.com, you're entitled to a complimentary copy of Chapter 7 of Exploiting Software: How to Break Code written by Greg Hoglund and Gary McGraw and published by Addison-Wesley Professional.
This chapter, "Buffer Overflow,"
Requires Free Membership to View
When you register, you'll receive targeted emails designed to keep you informed of the most relevant information on Agile development, application security, testing & QA, software requirements, and more.
Hannah Smalltree, Editorial Director
discusses what buffer overflow attacks are, how to combat them and why they remain the crown jewel of attacks, and are likely to remain so for years to come.
Book description:
How does software break? How do attackers make software break on purpose? Why are firewalls, intrusion detection systems and antivirus software not keeping out the bad guys? What tools can be used to break software? This book provides the answers.
Exploiting Software is loaded with examples of real attacks, attack patterns, tools, and techniques used by bad guys to break software. If you want to protect your software from attack, you must first learn how real attacks are really carried out.
This must-have book may shock you -- and it will certainly educate you. Getting beyond the script kiddie treatment found in many hacking books, you will learn about
- Why software exploit will continue to be a serious problem
- When network security mechanisms do not work
- Attack patterns
- Reverse engineering
- Classic attacks against server software
- Surprising attacks against client software
- Techniques for crafting malicious input
- The technical details of buffer overflows
- Rootkits
>> Read "Chapter 7: Buffer Overflow" now.
>> Buy the book
This was first published in January 2006