Hacker's Challenge 2

Francis White writes "Hacker's Challenge 2 is the second volume in a series of books that present a series of real-world security scenarios and their solutions. For each scenario, information is given, clues are presented and questions are asked of the reader. Turning to the back of the book reveals what really happened along with suggestions and tips for how to respond to and possibly even prevent each presented attack." Read on for the rest of his review. Hacker's Challenge 2 author Mike Schiffman, Bill Pennington, Adam J. O'Donnell, David Pollino pages 352 publisher McGraw-Hill Osborne Media rating 9 reviewer Francis (Frank) White ISBN 0072226307 summary A computer security puzzle book with interesting challenges and detailed solutions

What It Covers

The scenarios in the book cover a wide range of current attacks. There are a few scenarios involving wireless access that each manage to point out a different facet of wireless security. Also, the book includes a few examples of network penetrations, a man in the middle attack, a bit of forensic analysis and the highly popular (in the media at least) "insider attack." One chapter focuses on exploit development using a simple stack overflow, which is a nice diversion.

The book's format is identical to that of the previous volume. Each challenge is rated Low, Medium, or High for Attack Complexity, Prevention and Mitigation. An account of each problem is presented (organized by date and time), often from the point of view of the person charged with figuring out what is happening or has happened. Logs are presented as they are requested by the investigator; the authors do a great job of following the thought processes and actions of the people responding to the incident as they discover each clue and take their steps forward.

At the end of each scenario description, there are a number of questions that generally help focus the reader's attention on the relevant parts of the scenario. After the reader comes up with some likely answers, he can turn to the back of the book where the solutions are found. Each solution is broken down into an explanation of the attack, how the attack could have been prevented, and steps to take to mitigate the effects of the attack after it has occurred.

The explanation highlights the clues that were presented, how they could have been used to solve the challenge, and the right (or wrong) steps the investigator took and why. Links to additional information and references are provided at the end of each solution.

The Authors

Hacker's Challenge 2 is written by Mike Schiffman (@stake), Bill Pennington (WhiteHatSec), Adam J. O'Donnell (working towards PhD at Drexel), and David Pollino (@stake). From the material presented, if not from their reputations and contributions to the computer security field (some of them under other names), the authors are obviously very familiar with analyzing and responding to security incidents. All of them contributed to the previous volume in the series. The book does not identify who wrote each chapter, unlike the first volume.

Why I Gave This Book A 9 I have read the previous volume in the series. I liked this volume a lot more, and while I was reading it, I tried to work out why. One of the possibilities I came up with is that they trimmed the number of authors from somewhere around ten, as they had used for the previous volume. The consistency of the writing and scenarios is greatly improved. The scenarios in this book are also much more interesting to me than in the previous book. It feels much more current than the previous volume. (I still recommend the previous volume, however, if you haven't been following possible attacks and countermeasures for a while. - I'd say I'd give it a 7.)

From the first chapter which opens with a still under-publicized layer-2 802.11 attack, it grabbed my attention. This is a great book for seeing not just what attacks are out there, but what attacks people in the security industry think are likely in the real world.

Like the previous volume, there doesn't appear to be much vendor bias in this book, which is always a welcome sight to me. Also, although the authors work in the security industry, they stay away from promoting themselves or their companies. (They do include links to some documents on company web sites, but they are technical documents, not marketing fluff.)

This volume is also packed with humor, although perhaps not everyone will appreciate or catch all of the jokes. My favorite quote in the book is from the chapter where "d4rkl0rd", a young novice hax0r who only speaks in l33t speak, is at the dinner table : "n0 m0m, 3y3 h4t3 gr33n b34ns, dUh!"

Conclusion I definitely recommend Hacker's Challenge 2 to anyone interested in, or responsible for, computer security. Even if you are very familiar with the subject, it's worthwhile to look over the attacks and solutions presented, and to compare the suggested response with the one you would use if presented with a similar scenario. The book is worth picking up even if you have read the previous volume, as it is of even higher quality, and covers, for the most part, completely different attacks. The format is easy to read and the real-world problem scenarios presented are interesting enough to keep you reading. The solutions are well presented and thorough, covering not just what happened in the attack and how to put the course of events together from the clues, but also ways to prevent and mitigate the attacks. Highly recommended. You can purchase Hacker's Challenge 2 from bn.com. Slashdot welcomes readers' book reviews -- to see your own review here, read the book review guidelines, then visit the submission page.

Sweet.

[Neck_of_the_Woods]

Mad Libs for hackers...

Re:Sweet.

[DonkeyJimmy]

Mad Libs for hackers...

good, now instead of replacing every adjective with smelly and every noun with ass, we can replace every adjective with 1337 sekret ninja and every noun with, well, ass.

why would people want a challenge...

[prof187]

...when they can just hack Windows instead?
=)

Physical violence

Physical violence may be the greatest threat of them all; a gun pointed to someone's head may ruin any security system.

Re:Physical violence

along the same lines, you can't threaten a houseplant into not growing

ahahaha

A Windows == insecure joke on slashdot!

Will the hilarity never end?

You're too funny!

Re:ahahaha

[prof187]

ahahaha
and you're too cynical, you insensitive clod!

That rings a bill ...

[Khalidz0r]

Well, the idea of hacker challenges rings a bill to me, as *hacker challenges* was one of the main things that got me to be interested in computing more than ever before. That reminds me of the many online hacking/programing challenges I played before, some of them were really fun, examples include http://www.try2hack.nl http://www.arcanum.co.nz http://www.slyfx.co.uk http://www.mod-x.co.uk And many others, they might not be really hard or challenging enough to experts, but they get you will into the interest of computing and security (They have no aims of producing black hat hackers imo, all what they aim at is producing people interested in securing themselves and people around them). I'll be looking into getting this Hackers Challenge as it really sounds interesting :).

Re:That rings a bill ...

[curtisk]

Agreed, also along the lines of the many "Crack-Me"
and "Hack-Me" challenges that security groups put out when trying to recruit. It's always fun for a challenge if nothing else.

The book sounds like a good read....

Re:That rings a bill ...

[Spyral999]

I'd never looked at hacking/cracking challenges before, but the www.try2hack.nl one is a great introduction to it, and surprisingly addictive.

Thanks for the link, I think some geek fun is definitely no bad thing from time to time.

Now if only I could get past level 5...
Time to monitor those temp files or find something to decompile visual basic exe's =)
Or peek at memory usage in something like softICE. Tonight could be a long night...
Cheers :)

Re:That rings a bill ...

[dramaley]

i believe the expression is "that rings a bell", not "that rings a bill".

Here's a scenario

[Joe+the+Lesser]

A slammer worm locks down your server. What do you do? ...
Answer: Take the week off.

Re:Here's a scenario

[Lord_Slepnir]

Answer: Switch to MySQL. Wallpaper your office with all the money you saved.

Re:Here's a scenario

Yeah, you sound like the typical Linux admin. Email server? It must be a user problem. I'll be in to fix it next week.

Re:Here's a scenario

mySQL is cool, it would be a good replacement for a lightweight database like access, but I hardly think that it has what it takes (yet) to replace an MS-SQL Server that is being used to its limits.

Re:Here's a scenario

Depends. If you are a company that sells security products, you let the worm run rampant and cause $$$ damage. Then you tell the whole world that you knew about the problem and hope no one finds a way to hold you accountable for you inactivity.

Re:Here's a scenario

Which is exactly why I would opt for the far more reasonable 'take the week off' solution. Thats the kind of out of the box thinking that I really dig.

Re:Here's a scenario

[fw3]

mySQL ... would be a good replacement for a lightweight database like access, but I hardly think that it has what it takes (yet) to replace an MS-SQL

Depends entirely on what you need, in terms of *speed* and *terrabyte* capacity, mysql was designed to be replace Oracle which is a helluva lot faster (not to mention more scale-able) than SQL-server. *Access* ??? that's a single-user application which some shops use to deploy multi user applications using SMB file locking -- very ugly, and not comparable.

Let's remember that just 4 years ago MS was pushing hard to get big-iron shops to commit to backending SAP-R3 with <cough> SQL-Server while trying to explain that 'you can work around the lack of row-level locking'.

Now *before* all the 'leet(sic) pgsql fans bounce in to suggest the mysql is inadequate ... Sure if you need TP and *complete* SQL language then mysql isn't the right choice. It remains a great solution for both performance and capacity where those attributes aren't needed.

Re:Here's a scenario

[Nalanthi]

"Answer: Switch to MySQL. Wallpaper your office with all the money you saved." Better yet, switch to MySQL, buy walpaper with the money you save, and then wall paper your wall. A room in that shade of green would be really ugly! Oh, and now you still have money. Nalanthi

Encyclopedia Brown

[spin2cool]

Remind anyone else of an Encyclopedia Brown book?

"Gee Willikers, looks like Bugs is up to something again. What? He's hacking the Pentagon? No need to call the authorities - us kid detectives have it under control! What? He just launched nukes at Russia? Maybe i'll leave this one to the cops..."

Also check out Encyclopedia Brown and the case of the Pirated MP3s.

Re:Encyclopedia Brown

[Bonker]

I was just about to say the same thing.

Seriously, check out the MH Encyclopedia Brown stories. They're great and presented *perfectly*.

Encyclopedia Brown and the Case of the Missing Olympic Magic is the best one, IMHO. God, I hate Bob Costas.

Re:Encyclopedia Brown

[LilGuy]

Those books were the bizomb back in the day! When I was in third grade I picked one out of the random sea of shitty little books that we had to read everyday. I actually liked it. I think I read them all within a couple months. In retrospect I shoulda paced myself, because I bombed reading for the rest of the year due to shitty books.

Why I Gave This Book An 9

[sczimme]

Why I Gave This Book An 9

Because it would not be a /. book review if the score were less than that. :-)

Re:Why I Gave This Book An 9

[_PimpDaddy7_]

Looks like I MAY need to review it as well...dang definitely not enough coffee this morning...

Re:Why I Gave This Book An 9

"Why I Gave This Book An 9"

Timmy, timmy timmy, you made need to review the little blue english handbook....

Talk about taking a dump in your own mailbox... "you made need"

Re:Why I Gave This Book An 9

[infochuck]

Because I'm a slashdotter, and grammer/syntax isn't my strong suit (unless it's related to C).

It's "a 9".

Why I Gave This Book An 9

[_PimpDaddy7_]

"Why I Gave This Book An 9"

Timmy, timmy timmy, you made need to review the little blue english handbook....

Hey Hotshot!

[burgburgburg]

A slammer worm locks down your server. What do you do?What do you do?!?

Shoot the server. Take it out of the equation.

This "Speed" moment was brought to you by Mentos.

Misleading title... it's NOT about HACKING

[dpbsmith]

A book entitled "HACKER'S Challenge" ought to be a series of programming puzzles with clever, nonintuitive answers.

I suppose trying to get writers and the general public to distinguish between hacking and cracking is a lost cause, but we need to keep trying.

Re:Misleading title... it's NOT about HACKING

but we need to keep trying.

No. You dont need to keep trying. The perprtual hacker v. cracker debate has gotten obnoxious.

Hacker
1. One who is proficient at using or programming a computer; a computer buff.

2. One who uses programming skills to gain illegal access to a computer network or file.

3. One who enthusiastically pursues a game or sport: a weekend tennis hacker.

I think that definition two describes the type of hacker that this book is aimed at so please go STFU, FOAD and suck the festering limp dick of your hero that ruddy faced blowhard ESR.

Re:Misleading title... it's NOT about HACKING

[pclminion]

I suppose trying to get writers and the general public to distinguish between hacking and cracking is a lost cause, but we need to keep trying.

Sigh... I know how you feel. But I think we should just let them have the term. It's wasted effort to keep trying to correct people.

Let them refer to crackers as "hackers." We'll just switch to referring to hackers as "gods." ;-)

Re:Misleading title... it's NOT about HACKING

[Shawn+Baumgartner]

Main Entry: bitch
Pronunciation: 'bich
Function: noun
Etymology: Middle English bicche, from Old English bicce
Date: before 12th century
1 : the female of the dog or some other carnivorous mammals
2 a : a lewd or immoral woman b : a malicious, spiteful, or domineering woman -- sometimes used as a generalized term of abuse
3 : something that is highly objectionable or unpleasant
4 : COMPLAINT

(source: www.m-w.com)

Rather ironic that you dispute the multiple meanings of the word "hacker" by performing an action that also has multiple meanings. Damn I love words, and bitching. And bitches come to think of it.

Re:Misleading title... it's NOT about HACKING

OK, I give up. What IS the difference between a hacker and a cracker?

In general, I think it's pointless to try and change the meanings of words once they have become household terms. Language evolves - get used to it.

Re:Misleading title... it's NOT about HACKING

A hacker does what he does on his own computer whereas a cracker breaks into other people's computer systems. It's like the difference between a locksmith (picks his own locks) and a bank robber (picks the bank's locks). Or perhaps it is more like the difference between a gun enthusiast (shoots at his own stuff) and a mass murderer (shoots at others).

Re:Misleading title... it's NOT about HACKING

[bandannarama]

Why? Really -- why? Even l33t h4x0rs don't call themselves cr4x0rs. Everyone I know recognizes that "hacking" originally referred to coding, and in my development shop it still does. But now it also means "doing naughty security-related computer things." The term has taken on an overloaded meaning, and the context is almost always sufficient to distinguish what the speaker means.

Recommended

[antiframe]

I have read through a few of the scenarios, and they are great. I haven't read the first in the series though, but I might go back and do that at some time. Having been Adam's roomate at Drexel a few years back, I can vouch for his very talented security analysis skills, so any work with his name on it gets my seal of approval right off the bat anyhow.

Re:Recommended

[unitron]

If he were a real hacker (not cracker), he would have gone to Dremel University.

"Why I Gave This Book An 9"

Does anybody proofread this shit?

Oops, this is slashdot. Soryy about that.

Re:"Why I Gave This Book An 9"

[zero_offset]

Soryy about that.

That's okk.

choose your own adventure

[OwlofCreamCheese]

sorta like a choose your own adventure book...

they should make one for adults... they would only have to actually write on half the pages... as they could assume everyone would just pick the selection that looked like it would lead to sex...

I remember <daemon9@netcom.com>

[Bodysurf]

I doubt Mike would remember me, but Mike got pissed off at me back around 1995 because I insulted one of his hacker buddies (They didn't like the fact that a few of us were storing warez on the "/hack2/tmp" directories there). Mike threatened to hax0r my Netcom account.

That always stewed me for years but I finally got my revenge on him when I visited Cesar Gracie's BJJ school a couple years or so ago and rolled with him. He was tapping like an experienced congo player.

What comes around goes around Mike.

This hacker's challenge

is just getting up in the morning. I was hacking so bad this morning, I thought I was gonna die. Smoking more - enjoying it less.

memories..

[syle]

My favorite quote in the book is from the chapter where "d4rkl0rd", a young novice hax0r who only speaks in l33t speak, is at the dinner table : "n0 m0m, 3y3 h4t3 gr33n b34ns, dUh!"

I can't believe my mom recorded that conversation!

This is so embarassing...

damn...

[ceswiedler]

I thought it was the reverse: challenges for systems to hack into.

After that, I thought, maybe it's real 'hacks', as in what the Jargon File would define 'hack' as.

Speaking of which...I tried to provide a link to www.tuxedo.org and got redirected to various sites. What's up with ESR's site?

Re:damn...

[Marcus+Brody]

something about ESR's site in last weeks ntk.

I need some help

[ellem]

d00dz!

c4n $Um1 pLz p0st a PDF of thz $0 I c4n dl !T?

Hey, he got modded up! There's a shock

Here on Slashdot, I would expect nothing more.

For the layman?

This book looks interesting. However, I am not very familiar with computer security. Is this the type of book that a computer geek with basic linux knowledge and harddware knowledge can pick up easy?

Re:Wouldn't it be funny ...

[Marcus+Brody]

yeah haha fucking hilarious dude

Re:I remember

What comes around goes around Mike.

Yeah you fucking fuck.

"Speed" meets "Hackers"

[crawdaddy]

Mad Hacker: "Pop quiz, hotshot! Hacker just started compiling and executing a killer virus on his machine! You can either save the internet or capture the bad guy. What do you do?"
Keanu Reeves: "Shoot the boxen."
Mad Hacker: "But it's got a bullet-proof cover over it with a keyboard entry system...and YOU DON'T KNOW THE PASSWORD"
Keanu Reeves: "I'm already in!"
Mad Hacker: "But how?!"
Keanu Reeves: "The three most commonly used passwords: love, secret, and sex...not necessarily in that order"
Mad Hacker: "But it's not any of those"
Keanu Reeves: "Don't forget about 'God'. System operators love using 'god'."

Ok...maybe I went a bit overboard with it...

Re:"Speed" meets "Hackers"

Keanu Reeves: "Whoah, dude!"

Good Challenges/Case Studies

[ThirdEdition]

I've read this book too, and it's really good. The problem is that they don't have enough space to really misdirect you, they really only provide the information that is relevant. In a real world environment, you'd need to sift through everything (irrelivant logs, user history files, timestamps) to see what is and is not helpful. But HC does a good job with what they can offer.

I was first intrigued by case studies when I read hacking linux exposde, which has excellent real-world case studies. Turn them on their heads and they are useful as challenges too. Since HLE was based on Hacking Exposed I thought I'd get it for those case studies, but they are lame 1-2 page things.

You can get the case studies for HEL online now, which is cool.

Does anyone else have good case studies / challenge pointers that are available online?

Hello

a bit overboard

The feces shooting out of my trousers will testify to that fact.

I wish I could find a book like that

[HalfStarted]

So true... in fact the other day I was trying (with no luck) to find a book of problems and puzzles for programmers. Ideally nothing language specific, more focused on clever algorithms... a fairly concise problem statement (say a page or less) and answerers that are self checking (i.e. if you got the answer... you did it right). With puzzle complexity being something that would take a day to a week to solve and really push creative thinking... if anybody knows of one... please let us know... if not... maybe I should start writing. ;)

Sneakers

Robert Redford was in the movie Sneakers, not Hackers. *end movie troll*

Re:I remember

Ahhh... #r00t days

486578

Please inform Kevin Mitnick

While we're on the subject, somebody please inform Kevin Mitnick that he was a cracker, not a hacker as he kept referring to in his interview.

The term 'cracker' only came into use as a result of political correctness... the good hackers didn't like their name tarnished by the bad hackers, so they assigned the term 'cracker' to these people.

So one who breaks into systems is also known as a hacker. Your sense of political correctness prevents you from using that term. To you, one who breaks into Coke vending machines would be a soda cracker.

Ha ha!

[YOU+LIKEWISE+FAIL+IT]

For reminding me of the ten or so Encyclopedia Brown books I devoured as a child, I salute you, my friend.

It's a martian with a phaser-gun!, shouted Bugs, He's going to turn you into an ice-cream pie!

I can also remember Bugs Meaney's "2) ???" was "Trying to figure out why the stomach doesn't digest itself."

What was the girls name? Sally? She had Spunk.

It's CRACKER not HACKER!! Damn!!!

Why do people even on slashdot not get it right????

Re:It's CRACKER not HACKER!! Damn!!!

Fscking please shut the fuck up with that tired old "it's cracker not hacker" whining bullshit! NOBODY FUCKING CARES!

Re:It's CRACKER not HACKER!! Damn!!!

[Bodysurf]

You got it all wrong... A cracker is one who removes the copy protection from computer software. A hacker is one who hacks into computer systems.

Re:Wouldn't it be funny ...

[Apple+Acolyte]

Boy, it's really incredible that such a post is rated so highly. Such wonderful intellectual gems courtesy of /. [i]I never met a Mac I didn't like.[/i]

And i thought...

[bombkit]

decompileing that java script file on lvl 4 was bad, now i just cant wait to move on to 5.. hehe :|

Re:And i thought...

[Shanep]

decompileing that java script file on lvl 4 was bad, now i just cant wait to move on to 5.. hehe :|

Not Javascript, it's Java.

This is fun. Thanks Khalidz0r.

Re:Hacking 101

Quiet, Billy G.

You know Melinda doesn't like you to talk that way in public.

...and none of this counts...

... if the hacker is the security challenge. Organisations may spend as much as they like on security, but it's no good if the one entrusted to protect the chickenhouse is the fox.

Re:That rings a bell ...

[Khalidz0r]

True,

sorry, was a typo.

Good book and there's a monthly ongoing contest

[shiroi_kami]

Great book. I also found a monthly forensic challenge contest here.