Ethical Hacking Textbook Recommendations for Abertay University's CMP320

This article provides recommendations for two essential textbooks to support teaching the 'Ethical Hacking 3' (CMP320) module at Abertay University.

Module Description:

The module aims to develop a critical understanding of analysis techniques used by Ethical Hackers to examine binary files, fostering practical skills through individual projects.

Indicative Content:

  • Binary Auditing Tools: Binary auditing tools, Debuggers, add-ons, debugging techniques.
  • Binary Auditing: Binary auditing, Source code auditing. Black box auditing. Reverse engineering auditing. Copy protection auditing.
  • Buffer Overflows: Significance of Buffer Overflow Vulnerability. Why Programs and Applications are Vulnerable. Reasons for Buffer Overflow Attacks. Methods of ensuring that buffer overflows are trapped.
  • Shell code development: Shell code development. Creating and writing shellcode.
  • Structured Exception Handling: Structured exception handling (SEH) vulnerabilities. Exploitation and countermeasures.
  • Overcoming operating system countermeasures: Avoiding Data Execution Prevention (DEP). Address Space Randomisation Layout (ASLR) evasion using ROP chains.
  • Heap Spray techniques: Heap Spray Techniques. Use of Heap Spraying to avoid countermeasures.
  • Malware analysis: Types of malware, malware analysis methodology. Static and Dynamic analysis.

Textbook Recommendations:

  1. 'The Shellcoder's Handbook: Discovering and Exploiting Security Holes' by Chris Anley, John Heasman, Felix Lindner, and Gerardo Richarte.

    This textbook offers a comprehensive exploration of shellcode development, structured exception handling vulnerabilities, and techniques for circumventing operating system countermeasures. It also delves into buffer overflow vulnerabilities and strategies for mitigating them.

  2. 'Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software' by Michael Sikorski and Andrew Honig.

    This textbook focuses on malware analysis methodology, encompassing both static and dynamic analysis approaches. It provides hands-on exercises for students to apply their knowledge and hone their skills in identifying and dissecting malicious software.

Ethical Hacking Textbook Recommendations for Abertay University's CMP320

原文地址: https://www.cveoy.top/t/topic/oo3Y 著作权归作者所有。请勿转载和采集!

免费AI点我,无需注册和登录