Picture 1 of 7
Gallery
Picture 1 of 7
Fuzzing : Brute Force Vulnerability Discovery by Adam Greene, Michael Sutton and
US $24.95
ApproximatelyPHP 1,391.24
Condition:
Good
A book that has been read but is in good condition. Very minimal damage to the cover including scuff marks, but no holes or tears. The dust jacket for hard covers may not be included. Binding has minimal wear. The majority of pages are undamaged with minimal creasing or tearing, minimal pencil underlining of text, no highlighting of text, no writing in margins. No missing pages.
Oops! Looks like we're having trouble connecting to our server.
Refresh your browser window to try again.
Pickup:
Free local pickup from Las Vegas, Nevada, United States.
Shipping:
Free USPS Media MailTM.
Located in: Las Vegas, Nevada, United States
Delivery:
Estimated between Tue, 3 Jun and Fri, 6 Jun to 94104
Returns:
30 days return. Buyer pays for return shipping. If you use an eBay shipping label, it will be deducted from your refund amount.
Coverage:
Read item description or contact seller for details. See all detailsSee all details on coverage
(Not eligible for eBay purchase protection programmes)
Seller assumes all responsibility for this listing.
eBay item number:204065909042
Item specifics
- Condition
- ISBN
- 9780321446114
About this product
Product Identifiers
Publisher
Addison Wesley Professional
ISBN-10
0321446119
ISBN-13
9780321446114
eBay Product ID (ePID)
59096967
Product Key Features
Number of Pages
576 Pages
Publication Name
Fuzzing : Brute Force Vulnerability Discovery
Language
English
Publication Year
2007
Subject
Software Development & Engineering / General, Networking / Vendor Specific, Security / General, Security / Networking
Type
Textbook
Subject Area
Computers
Format
Perfect
Dimensions
Item Height
1.1 in
Item Weight
31.2 Oz
Item Length
9 in
Item Width
7 in
Additional Product Features
Intended Audience
Scholarly & Professional
LCCN
2007-011463
Dewey Edition
22
Illustrated
Yes
Dewey Decimal
005.8
Table Of Content
Foreword xix Preface xxi Acknowledgments xxv About the Author xxvii P ARTI B ACKGROUND 1 Chapter 1 Vulnerability Discovery Methodologies 3 Chapter 2 What Is Fuzzing? 21 Chapter 3 Fuzzing Methods and Fuzzer Types 33 Chapter 4 Data Representation and Analysis 45 Chapter 5 Requirements for Effective Fuzzing 61 P ART II T ARGETS AND A UTOMATION 71 Chapter 6 Automation and Data Generation 73 Chapter 7 Environment Variable and Argument Fuzzing 89 Chapter 8 Environment Variable and Argument Fuzzing: Automation 103 Chapter 9 Web Application and Server Fuzzing 113 Chapter 10 Web Application and Server Fuzzing: Automation 137 Chapter 11 File Format Fuzzing 169 Chapter 12 File Format Fuzzing: Automation on UNIX 181 Chapter 13 File Format Fuzzing: Automation on Windows 197 Chapter 14 Network Protocol Fuzzing 223 Chapter 15 Network Protocol Fuzzing: Automation on UNIX 235 Chapter 16 Network Protocol Fuzzing: Automation on Windows 249 Chapter 17 Web Browser Fuzzing 267 Chapter 18 Web Browser Fuzzing: Automation 283 Chapter 19 In-Memory Fuzzing 301 Chapter 20 In-Memory Fuzzing: Automation 315 P ART III A DVANCED F UZZING T ECHNOLOGIES 349 Chapter 21 Fuzzing Frameworks 351 Chapter 22 Automated Protocol Dissection 419 Chapter 23 Fuzzer Tracking 437 Chapter 24 Intelligent Fault Detection 471 P ART IV L OOKING F ORWARD 495 Chapter 25 Lessons Learned 497 Chapter 26 Looking Forward 507 Index 519
Synopsis
FUZZING Master One of Today' s Most Powerful Techniques for Revealing Security Flaws! Fuzzing has evolved into one of today' s most effective approaches to test software security. To " fuzz, " you attach a program' s inputs to a source of random data, and then systematically identify the failures that arise. Hackers have relied on fuzzing for years: Now, it' s your turn. In this book, renowned fuzzing experts show you how to use fuzzing to reveal weaknesses in your software before someone else does." " "Fuzzing "is the first and only book to cover fuzzing from start to finish, bringing disciplined best practices to a technique that has traditionally been implemented informally. The authors begin by reviewing how fuzzing works and outlining its crucial advantages over other security testing methods. Next, they introduce state-of-the-art fuzzing techniques for finding vulnerabilities in network protocols, file formats, and web applications; demonstrate the use of automated fuzzing tools; and present several insightful case histories showing fuzzing at work. Coverage includes: - Why fuzzing simplifies test design and catches flaws other methods miss - The fuzzing process: from identifying inputs to assessing " exploitability" - Understanding the requirements for effective fuzzing - Comparing mutation-based and generation-based fuzzers - Using and automating environment variable and argument fuzzing - Mastering in-memory fuzzing techniques - Constructing custom fuzzing frameworks and tools - Implementing intelligent fault detection Attackers are already using fuzzing. You should, too. Whether you' re a developer, security engineer, tester, or QA specialist, this book teaches you how to build secure software. Foreword xix Preface xxi Acknowledgments xxv About the Author xxvii PARTI BACKGROUND 1 Chapter 1 Vulnerability Discovery Methodologies 3 Chapter 2 What Is Fuzzing? 21 Chapter 3 Fuzzing Methods and Fuzzer Types 33 Chapter 4 Data Representation and Analysis 45 Chapter 5 Requirements for Effective Fuzzing 61 PART II TARGETS AND AUTOMATION 71 Chapter 6 Automation and Data Generation 73 Chapter 7 Environment Variable and Argument Fuzzing 89 Chapter 8 Environment Variable and Argument Fuzzing: Automation 103 Chapter 9 Web Application and Server Fuzzing 113 Chapter 10 Web Application and Server Fuzzing: Automation 137 Chapter 11 File Format Fuzzing 169 Chapter 12 File Format Fuzzing: Automation on UNIX 181 Chapter 13 File Format Fuzzing: Automation on Windows197 Chapter 14 Network Protocol Fuzzing 223 Chapter 15 Network Protocol Fuzzing: Automation on UNIX 235 Chapter 16 Network Protocol Fuzzing: Automation on Windows 249 Chapter 17 Web Browser Fuzzing 267 Chapter 18 Web Browser Fuzzing: Automation 283 Chapter 19 In-Memory Fuzzing 301 Chapter 20 In-Memory Fuzzing: Automation 315 PART III ADVANCED FUZZING TECHNOLOGIES 349 Chapter 21 Fuzzing Frameworks 351 Chapter 22 Automated Protocol Dissection 419 Chapter 23 Fuzzer Tracking 437 Chapter 24 Intelligent Fault Detection 471 PART IV LOOKING FORWARD 495 Chapter 25 Lessons Learned 497 Chapter 26 Looking Forward 507 Index 519, FUZZING Master One of Today's Most Powerful Techniques for Revealing Security Flaws Fuzzing has evolved into one of today's most effective approaches to test software security. To "fuzz," you attach a program's inputs to a source of random data, and then systematically identify the failures that arise. Hackers have relied on fuzzing for years: Now, it's your turn. In this book, renowned fuzzing experts show you how to use fuzzing to reveal weaknesses in your software before someone else does. Fuzzing is the first and only book to cover fuzzing from start to finish, bringing disciplined best practices to a technique that has traditionally been implemented informally. The authors begin by reviewing how fuzzing works and outlining its crucial advantages over other security testing methods. Next, they introduce state-of-the-art fuzzing techniques for finding vulnerabilities in network protocols, file formats, and web applications; demonstrate the use of automated fuzzing tools; and present several insightful case histories showing fuzzing at work. Coverage includes: - Why fuzzing simplifies test design and catches flaws other methods miss - The fuzzing process: from identifying inputs to assessing "exploitability" - Understanding the requirements for effective fuzzing - Comparing mutation-based and generation-based fuzzers - Using and automating environment variable and argument fuzzing - Mastering in-memory fuzzing techniques - Constructing custom fuzzing frameworks and tools - Implementing intelligent fault detection Attackers are already using fuzzing. You should, too. Whether you're a developer, security engineer, tester, or QA specialist, this book teaches you how to build secure software. Foreword xix Preface xxi Acknowledgments xxv About the Author xxvii P ARTI B ACKGROUND 1 Chapter 1 Vulnerability Discovery Methodologies 3 Chapter 2 What Is Fuzzing? 21 Chapter 3 Fuzzing Methods and Fuzzer Types 33 Chapter 4 Data Representation and Analysis 45 Chapter 5 Requirements for Effective Fuzzing 61 P ART II T ARGETS AND A UTOMATION 71 Chapter 6 Automation and Data Generation 73 Chapter 7 Environment Variable and Argument Fuzzing 89 Chapter 8 Environment Variable and Argument Fuzzing: Automation 103 Chapter 9 Web Application and Server Fuzzing 113 Chapter 10 Web Application and Server Fuzzing: Automation 137 Chapter 11 File Format Fuzzing 169 Chapter 12 File Format Fuzzing: Automation on UNIX 181 Chapter 13 File Format Fuzzing: Automation on Windows 197 Chapter 14 Network Protocol Fuzzing 223 Chapter 15 Network Protocol Fuzzing: Automation on UNIX 235 Chapter 16 Network Protocol Fuzzing: Automation on Windows 249 Chapter 17 Web Browser Fuzzing 267 Chapter 18 Web Browser Fuzzing: Automation 283 Chapter 19 In-Memory Fuzzing 301 Chapter 20 In-Memory Fuzzing: Automation 315 P ART III A DVANCED F UZZING T ECHNOLOGIES 349 Chapter 21 Fuzzing Frameworks 351 Chapter 22 Automated Protocol Dissection 419 Chapter 23 Fuzzer Tracking 437 Chapter 24 Intelligent Fault Detection 471 P ART IV L OOKING F ORWARD 495 Chapter 25 Lessons Learned 497 Chapter 26 Looking Forward 507 Index 519, FUZZING Master One of Today's Most Powerful Techniques for Revealing Security Flaws! Fuzzing has evolved into one of today's most effective approaches to test software security. To "fuzz," you attach a program's inputs to a source of random data, and then systematically identify the failures that arise. Hackers have relied on fuzzing for years: Now, it's your turn. In this book, renowned fuzzing experts show you how to use fuzzing to reveal weaknesses in your software before someone else does. Fuzzing is the first and only book to cover fuzzing from start to finish, bringing disciplined best practices to a technique that has traditionally been implemented informally. The authors begin by reviewing how fuzzing works and outlining its crucial advantages over other security testing methods. Next, they introduce state-of-the-art fuzzing techniques for finding vulnerabilities in network protocols, file formats, and web applications; demonstrate the use of automated fuzzing tools; and present several insightful case histories showing fuzzing at work. Coverage includes: · Why fuzzing simplifies test design and catches flaws other methods miss · The fuzzing process: from identifying inputs to assessing "exploitability" · Understanding the requirements for effective fuzzing · Comparing mutation-based and generation-based fuzzers · Using and automating environment variable and argument fuzzing · Mastering in-memory fuzzing techniques · Constructing custom fuzzing frameworks and tools · Implementing intelligent fault detection Attackers are already using fuzzing. You should, too. Whether you're a developer, security engineer, tester, or QA specialist, this book teaches you how to build secure software. Foreword xix Preface xxi Acknowledgments xxv About the Author xxvii P ARTI B ACKGROUND 1 Chapter 1 Vulnerability Discovery Methodologies 3 Chapter 2 What Is Fuzzing? 21 Chapter 3 Fuzzing Methods and Fuzzer Types 33 Chapter 4 Data Representation and Analysis 45 Chapter 5 Requirements for Effective Fuzzing 61 P ART II T ARGETS AND A UTOMATION 71 Chapter 6 Automation and Data Generation 73 Chapter 7 Environment Variable and Argument Fuzzing 89 Chapter 8 Environment Variable and Argument Fuzzing: Automation 103 Chapter 9 Web Application and Server Fuzzing 113 Chapter 10 Web Application and Server Fuzzing: Automation 137 Chapter 11 File Format Fuzzing 169 Chapter 12 File Format Fuzzing: Automation on UNIX 181 Chapter 13 File Format Fuzzing: Automation on Windows 197 Chapter 14 Network Protocol Fuzzing 223 Chapter 15 Network Protocol Fuzzing: Automation on UNIX 235 Chapter 16 Network Protocol Fuzzing: Automation on Windows 249 Chapter 17 Web Browser Fuzzing 267 Chapter 18 Web Browser Fuzzing: Automation 283 Chapter 19 In-Memory Fuzzing 301 Chapter 20 In-Memory Fuzzing: Automation 315 P ART III A DVANCED F UZZING T ECHNOLOGIES 349 Chapter 21 Fuzzing Frameworks 351 Chapter 22 Automated Protocol Dissection 419 Chapter 23 Fuzzer Tracking 437 Chapter 24 Intelligent Fault Detection 471 P ART IV L OOKING F ORWARD 495 Chapter 25 Lessons Learned 497 Chapter 26 Looking Forward 507 Index 519, FUZZING Master One of Today''s Most Powerful Techniques for Revealing Security Flaws! Fuzzing has evolved into one of today''s most effective approaches to test software security. To "fuzz," you attach a program''s inputs to a source of random data, and then systematically identify the failures that arise. Hackers have relied on fuzzing for years: Now, it''s your turn. In this book, renowned fuzzing experts show you how to use fuzzing to reveal weaknesses in your software before someone else does. Fuzzing is the first and only book to cover fuzzing from start to finish, bringing disciplined best practices to a technique that has traditionally been implemented informally. The authors begin by reviewing how fuzzing works and outlining its crucial advantages over other security testing methods. Next, they introduce state-of-the-art fuzzing techniques for finding vulnerabilities in network protocols, file formats, and web applications; demonstrate the use of automated fuzzing tools; and present several insightful case histories showing fuzzing at work. Coverage includes: * Why fuzzing simplifies test design and catches flaws other methods miss * The fuzzing process: from identifying inputs to assessing "exploitability" * Understanding the requirements for effective fuzzing * Comparing mutation-based and generation-based fuzzers * Using and automating environment variable and argument fuzzing * Mastering in-memory fuzzing techniques * Constructing custom fuzzing frameworks and tools * Implementing intelligent fault detection Attackers are already using fuzzing. You should, too. Whether you''re a developer, security engineer, tester, or QA specialist, this book teaches you how to build secure software. Foreword xix Preface xxi Acknowledgments xxv About the Author xxvii P ARTI B ACKGROUND 1 Chapter 1 Vulnerability Discovery Methodologies 3 Chapter 2 What Is Fuzzing? 21 Chapter 3 Fuzzing Methods and Fuzzer Types 33 Chapter 4 Data Representation and Analysis 45 Chapter 5 Requirements for Effective Fuzzing 61 P ART II T ARGETS AND A UTOMATION 71 Chapter 6 Automation and Data Generation 73 Chapter 7 Environment Variable and Argument Fuzzing 89 Chapter 8 Environment Variable and Argument Fuzzing: Automation 103 Chapter 9 Web Application and Server Fuzzing 113 Chapter 10 Web Application and Server Fuzzing: Automation 137 Chapter 11 File Format Fuzzing 169 Chapter 12 File Format Fuzzing: Automation on UNIX 181 Chapter 13 File Format Fuzzing: Automation on Windows 197 Chapter 14 Network Protocol Fuzzing 223 Chapter 15 Network Protocol Fuzzing: Automation on UNIX 235 Chapter 16 Network Protocol Fuzzing: Automation on Windows 249 Chapter 17 Web Browser Fuzzing 267 Chapter 18 Web Browser Fuzzing: Automation &n
LC Classification Number
QA76.9.A25S89 2007
Item description from the seller
Seller feedback (419)
- 1***5 (622)- Feedback left by buyer.Past monthVerified purchaseFast shipping. Item was exactly as described. Great value. Game was packaged securely and arrived in good condition. Great seller, thank you!
- o***r (839)- Feedback left by buyer.Past monthVerified purchaseExactly what I wanted, thank you!
- 0***i (41)- Feedback left by buyer.Past monthVerified purchase👍