Managed Code Rootkits is the first book to cover application-level rootkits and other types of malware inside the application VM, which runs a platform-independent programming environment for processes. The book, divided into four parts, points out high-level attacks, which are developed in intermediate language. The initial part of the book offers an overview of managed code rootkits. It explores environment models of managed code and the relationship of managed code to rootkits by studying how they use application VMs. It also discusses attackers of managed code rootkits and various attack scenarios. The second part of the book covers the development of managed code rootkits, starting with the tools used in producing managed code rootkits through their deployment. The next part focuses on countermeasures that can possibly be used against managed code rootkits, including technical solutions, prevention, detection, and response tactics. The book concludes by presenting techniques that are somehow similar to managed code rootkits, which can be used in solving problems. - Named a 2011 Best Hacking and Pen Testing Book by InfoSec Reviews - Introduces the reader briefly to managed code environments and rootkits in general - Completely details a new type of rootkit hiding in the application level and demonstrates how a hacker can change language runtime implementation - Focuses on managed code including Java, .NET, Android Dalvik and reviews malware development scanarios

A guide to computer security discusses how the "blackhat community" uses the Internet for destructive purposes and provides information on how to learn from a "blackhat" attack to protect computer networks.

Hack Proofing Your Network

While you’re reading this, a hacker could be prying and spying his way into your company’s IT systems, sabotaging your operations, stealing confidential information, shutting down your Web site, or wreaking havoc in other diabolical ways. Hackers For Dummies helps you hack into a hacker’s mindset and take security precautions to help you avoid a hack attack. It outlines computer hacker tricks and techniques you can use to assess the security of your own information systems, find security vulnerabilities, and fix them before malicious and criminal hackers can exploit them. It covers: Hacking methodology and researching public information to see what a hacker can quickly learn about your operations Social engineering (how hackers manipulate employees to gain information and access), physical security, and password vulnerabilities Network infrastructure, including port scanners, SNMP scanning, banner grabbing, scanning, and wireless LAN vulnerabilities Operating systems, including Windows, Linux, and Novell NetWare Application hacking, including malware (Trojan horses, viruses, worms, rootkits, logic bombs, and more), e-mail and instant messaging, and Web applications Tests, tools (commercial, shareware, and freeware), and techniques that offer the most bang for your ethical hacking buck With this guide you can develop and implement a comprehensive security assessment plan, get essential support from management, test your system for vulnerabilities, take countermeasures, and protect your network infrastructure. You discover how to beat hackers at their own game, with: A hacking toolkit, including War dialing software, password cracking software, network scanning software, network vulnerability assessment software, a network analyzer, a Web application assessment tool, and more All kinds of countermeasures and ways to plug security holes A list of more than 100 security sites, tools, and resources Ethical hacking helps you fight hacking with hacking, pinpoint security flaws within your systems, and implement countermeasures. Complete with tons of screen shots, step-by-step instructions for some countermeasures, and actual case studies from IT security professionals, this is an invaluable guide, whether you’re an Internet security professional, part of a penetration-testing team, or in charge of IT security for a large or small business.