The Art Of Deception

theciscokid

i got the book today by mitnick..

boy there is some really funny social engineering stories in it that you wouldn't believe...

well worth picking up , Hodges Figgis have it,

ex.

"Hi, " the voice the other end of the line says.

"This is tom at Parkhurst Travel. Your tickets to san francisco are ready. Do you want us to deliver them, or do you want to pick them up?"

"San Francisco?" Peter says. "I'm not going to San Francisco."

"Is this Peter Abels?"

"Yes, but i don't have any trips coming up."

"Well," the caller says with a friendly laugh, "you sure you don't want to go to San Francisco?"

"If you think you talk my boss into it..." Peter says,
playing along with the friendly conversation.

"Sounds like a mix up," the caller says. "On our system, we book travel arrangements under the employee number. Maybe somebody used the wrong number. What's your employee number?"

and the rest is history




tried and tested on eircom employees*


*this may not have happened:p

Dingatron

Yeah read the review of it. Its amazing what you can get away with if you have the balls. Must get my hands on it as it sounds like a good read. On the techy aspect I got "Hackers Beware" for xmas. Thats a scarey book. It goes through various exploits,how to use the different tools and how to harden your systems against the. Have a mini network and working on some of them (from a security point of view :-) ) and lets just say I'll be reviewing security on some of our servers in work. Not a book you need the script kiddies to read.

theciscokid

well, at the last 2600 meet, someone produced a book called hacking exposed, geez, it was quite informative, and i love the way they get around the taboo subject,

now this is how you don't do it, because if you do this , this way, it could leave the victim open to an exploit - classic stuff

they tell you how to do a certain thing , by telling you how not to do it

heres a site based on the book ,

http://www.hackingexposed.com/

a cd of tools also comes with the book , which is available off the site.

hey ding,. i'll lend you the mitnick book , it'll save you €30 , but you'll have to turn up to the meets to borrow it

sceptre

Hacking Exposed is a cracking read (especially if you're a sysadmin). I don't have the latest edition (just ed2 from when I was sysadmin and general dogsbody) - as you'd expect many of the exploits have patches available by the time the book comes out. Knowing most sysadmins though (patch? Must get around to that), it's never been a problem for most readers who try it out.

Hackers Beware - is that the one that has a sister book from the other point of view? (read two like that last year, still available in the UL library)

conor-mr2

Hacking exposed is generally a very interesting read alrite. Its nice if you have a mini network to be able to try some of the techniques they talk about. I agree Sceptre----
sysadmin--"patch?? ah maybe later sure ill have to test it first and thats a pain in the arse!!"

Too frequent a scenario. Then theres the places with no sysadmins... but we'll say no more about them.

There are some sh*te books out there aswell tho.

Cabaal

Got it from amazon back about two months ago, have to say its extremely interesting reading.

Been busy so haven't got to read in it awhile but was well worth it.

The storys and scenarios are very funny.

scojones

yeah i read hacking exposed second edition. it was good enough but hacking linux exposed was better.

conor-mr2

Yea have that too. Its an interesting read alrite.

theciscokid

While we're on the subject of books , i picked up a real beauty for myself there recently, while new to unix/linux and the sort , i needed a good starter book, the one i got was for beginners+intermediate

got it from waterstones

http://www.informit.com/isapi/product_id~%7B34CFC6AD-62F2-4E2E-8FC9-8FAF01BB309C%7D/st~%7B92211346-8B27-4309-BED3-67B5ADF4A33C%7D/content/index.asp

i can't recommend it enough for ppl starting out on linux etc..

i am no longer left looking at the ground when someone mentions unix commands, phew

ObeyGiant

I was in Hodges Figgis today, and saw the Mitnick book. I was very tempted, but then I saw that they had gotten in a new batch of "The Cuckoo's Egg", so went for that instead.

Anyone interested in these kinds of real-life security stories (especially those bordering on obsession) should definitely check this out, too.

malico

http://www.hackersbook.com/info.php?ref=2556


The hackers Black book is very good aswell. Just out and a very easy read