...unfortunatly with a n00b question also.
I'm just starting hacking for security and such, but unfortunatly I have no idea where to start. Any suggestions on where to? Any help is appreciated. Thank you.
Printable View
...unfortunatly with a n00b question also.
I'm just starting hacking for security and such, but unfortunatly I have no idea where to start. Any suggestions on where to? Any help is appreciated. Thank you.
Strange question..........
Hacking FOR Security ?
If you could please elaborate; some details of your system, OS, own security etc.
Although with this as your other post, I suspect that a few negs could be the result.
http://www.antionline.com/showthread...431#post751431
your profile shows you as Mac OS: try the following.
http://www.antionline.com/forumdispl...?s=&forumid=50
I'll bite this time, even though no n00b would write "n00b" or even know how to l33t speak.
But I digress...
Start by taking some network, network security, and programming classes at your local JC, load up some network utilities, i.e. snort, a sniffer, etc etc.
That's just a start, there's loads of info you need become intimate with. And just as with life, the more you know, the more you realize how little you truly do know.
"The fool thinks himself a wise man, while the wiseman knows himself to be a fool."
That's a bit like screwing for virginity really.........Quote:
hacking for security
What is it you want to learn to hack in order to be able to secure it? Fact is you are really doubling your work, learn what the threat is not how to actually carry out the dastardly deed and then you can work out how to mitigate against it.
Set your self up a little network in your house and practise on that, you cant go to jail that way!
Its suprising what you can learn with a Hacking Exposed book and your own private network to play on!
Aight, thanks to all. (And no I'm not a n00b at everything, just at this hacking business, so give me the benefit of the doubt here). I run Mac OS X, not quite to Panther (my budget won't allow it yet). All I have for "security" is just a proxy server and a firewall. The system I want to learn on is just a simple two-computer LAN with Microsoft NT. Yes, hacking for security. Hacking my own systems so others can't, basically. TY for you infinite wisdom and abounding knowlege.
b35id3s, 4nj m0r0n c4n sp34k l33t :P
EyeQGuy, start by looking around this site. Find something that is of interest or important to you, and do a search If you are having problems or a question, then post it. Somebody here should be able to help you. Try to be specific and supply enough information so we know what the problem or question pertains to.
quote:
b35id3s, 4nj m0r0n c4n sp34k l33t :P
Don't know what you just said, but I don't think leet speek goes over real well here. Some people don't mind and others do. Oh well, good luck in your quest
If you just want a simple 2 computer LAN I would highly reccommend the Hacking Exposed 4th edition, Network security, secrets and solutions book.
Ive just finished reading it and found it the most benificial book that ive read to date, it even comes with a DVD showing you a few simple hacks.
You can buy it from here: http://www.amazon.co.uk/exec/obidos/...847906-2501253
good luck!
hacking exposed is really a good recomendation, if your running NT. (haven't looked threw the later editions)
My biggest tip: Learn an OS inside out and outside in. That has helped me more than anything. I have focused on doing everything I possibly can with my windows XP box before I attempt *nix. Just delve in and you will learn lots about security on your journey.
I have, they are worth the money if you buy them in sets on ebay, some guy had all sets starting out at $5 out bid at $44.Quote:
Originally posted here by Tedob1
hacking exposed is really a good recomendation, if your running NT. (haven't looked threw the later editions)
I recommend all these.
"Computer Networks" - Andrew S. Tanenbaum
"Operating Systems" - Andrew S. Tanenbaum
"TCP/IP Illustrated" (volumes I-III) - W. Richard Stevens
"Advanced Programming in the UNIX Environment" - W. Richard Stevens
"UNIX Network Programming" (volumes I and II) - W. Richard Stevens
"UNIX System Administration Handbook" - Evi Nemeth
"Practical UNIX and Internet Security" - Simson Garfinkel
"Building Open Source Network Security Solutions" - Mike Schiffman
"Hacking Linux Exposed"
"Linux System Administrators Handbook"
"Practical UNIX and Internet Security"
Best there is for the basics/*nix basics
I'll second rust's vote for "TCP/IP Illustrated"
VERY awesome book. Cleared up pretty much all my questions about protocols and explained to me what goes on behind the scenes.
I didn't know hacking exposed came with a dvd?? Damn, I'm going to hafta run to Barnes and Noble (bookstore) to pick myself a copy of that.
*Thr34d T1tl3 ch4ng3d*
Another good tip to get some really cheap books, is stores like 75% off bookstores. They have a huge selection in computer-books, and the most expensive one is $5. Stores like that buy overstocks, and slightly bruised books, and sell them at those discounted prices.
We got the entire Hacking Exposed collection there for $4.99 each...
Wow, good info AND at a cheap price. Most excellent. Thanks to all again.
A few tips to get you started, and keep in mind along the way:
1. Find an OS you are comfortable with and master it. Don't just learn it, but figure out what makes it tick. Don't let gossip and heresay alter your perseptions on which OS is better than the other. Read http://www.antionline.com/showthread...hreadid=254589
2. Understand the concept of hacking is differerent than the concept of cracking. While cracking is moreso about computer security penetration, hacking is discovering the "why is it insecure? what makes it insecure? how could I make it more secure?" Embrace hacking, but know that to understand the aspects of cracking and grey-hat hacking means you will not only be able to understand how to defend an attack, but by learning how attacks work and how they would be preformed you can better impliment security measures in specifics and perfection.
3. Read the fscking manual. I can not stress this enough. If you do not know how something works, read the RFC. Read the manual. Read the help file. Read the installation file. Read the documentation. Read the forums. The reason I say this is not because people here are unwilling to answer questions, but because sometimes it is better for both memory and experience to learn it on one's own rather than have the answer handed to us.
4. Even with #3, don't be afraid to ask questions after you have exausted your resources. An answered question, no matter the content of the question, is better than a question never asked. We all started somewhere, and understand (AND REMEMBER) the harder times starting out.
5. Be prepared to purchase books on security (such as CERT, SAM, Hacking Exposed). However, never preassume that the book is 100% correct. Read it and study it, but keep a cynical mind. Cross check things if you are not sure.
6. Combining most of the above: Get hands on experience. Purchase a cheap 12 inch monitor and an old pentium 233. Slap a UNIX or BSD based operating system on there (command line only) and learn how to secure it, how to break it. Get used to the functionality of how command line works, for both Windows and UNIX/BSD. Hands on experience is what forges scholarly knowledge into experience, and experience into wisdom.
7. Get your hands on absolutley anything related to security. Read tutorial sections from top to bottom. Find something you don't quite understand yet? No worries, set it to the side and come back to it in a few weeks. Suddenly, a large part of what once confused you will make sense. Subscribe to a few security related newsletters. Keep up with security related news, products, security product reviews, exploits, etc. This industry moves fast, so you have to work hard to keep up.
8. Remember to stop once in a while and take a break. Relax, play a few games. Keep in mind that this field, while the above seven points may make it seem like a hectic and overbearing job, can be incredibly fun. If you try to move too far too fast in security, you will burn out. If you move too slow, you will still be attempting the bluebox trick ;) So, find a comfortable median in which to learn and operate with.
9. Learn a programming language. Be it BASIC, PASCAL, Java, C, C#, etc etc etc.. learn one. Get masterful at it, and learn another one. Why? Programming is the root of security and operating systems. Learn it well enough to eventually give back to the security community after all they have given you. Make a difference, be a hacker.
May the Tao bring experience and happiness upon your path in security!