Exploiting Software: How to Break Code

Exploiting Software: How to break codeI finished reviewing Exploiting Software: How to Break Code by Hoglund and Viega and you should expect to see the review on your favorite news for nerds site. The review still shows up in the submission queue, so if you want to see it sooner, tell Timothy to stop slacking off.

This could be the best security book I’ve read this year. The first one that actually tells you how to break code and take advantage of software applications instead of providing general rules like “validate user input”. I am sure the great amount of controversy will spur from the fact that such book is sold for $50 list, so pretty much anyone can get access to it, including those with some malicious plans. However, a need for such book is quite apparent, as quite often people know what a buffer overrun is, they know that it’s bad, they know that some Microsoft software frequently got slammed for it (happens less frequently now), but they sure cannot describe the exact way of how an attack can be launched.

Posted in News at February 22nd, 2004. Trackback URI: trackback

No Responses to “Exploiting Software: How to Break Code”

Leave a Reply

XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>