Linux Server Security : Hack and Defend

Learn how to attack and defend the world’s most popular web server platform Linux Server Security: Hack and Defend presents a detailed guide for experienced admins, aspiring hackers and other IT professionals seeking a more advanced understanding of Linux security. Written by a 20-year veteran of Linux server deployment this book provides the insight of experience along with highly practical instruction. The topics range from the theory of past, current, and future attacks, to the mitigation of a variety of online attacks, all the way to empowering you to perform numerous malicious attacks yourself (in the hope that you will learn how to defend against them). By increasing your understanding of a hacker’s tools and mindset you're less likely to be confronted by the all-too-common reality faced by many admins these days: someone else has control of your systems. Master hacking tools and launch sophisticated attacks: perform SQL injections, deploy multiple server exploits and crack complex passwords. Defend systems and networks: make your servers invisible, be confident of your security with penetration testing and repel unwelcome attackers. Increase your background knowledge of attacks on systems and networks and improve all-important practical skills required to secure any Linux server. The techniques presented apply to almost all Linux distributions including the many Debian and Red Hat derivatives and some other Unix-type systems. Further your career with this intriguing, deeply insightful, must-have technical book. Diverse, broadly-applicable and hands-on practical, Linux Server Security: Hack and Defend is an essential resource which will sit proudly on any techie's bookshelf. Cover Title Page Copyright Contents Preface Introduction Chapter 1: Invisibility Cloak Background Probing Ports Confusing a Port Scanner Installing knockd Packages Changing Default Settings Altering Filesystem Locations Some Config Options Starting the Service Changing the Default Network Interface Packet Types and Timing Testing Your Install Port Knocking Clients Making Your Server Invisible Testing Your iptables Saving iptables Rules Further Considerations Smartphone Client Troubleshooting Security Considerations Ephemeral Sequences Summary Chapter 2: Digitally Fingerprint Your Files Filesystem Integrity Whole Filesystem Rootkits Configuration False Positives Well Designed Summary Chapter 3: Twenty-First-Century Netcat History Installation Packages Getting Started Transferring Files Chatting Example Chaining Commands Together Secure Communications Executables Access Control Lists Miscellaneous Options Summary Chapter 4: Denying Service NTP Infrastructure NTP Reflection Attacks Attack Reporting Preventing SNMP Reflection DNS Resolvers Complicity Bringing a Nation to Its Knees Mapping Attacks Summary Chapter 5: Nping Functionality TCP Interpreter UDP ICMP ARP Payload Options Echo Mode Other Nping Options Summary Chapter 6: Logging Reconnoiters ICMP Misconceptions tcpdump Iptables Multipart Rules Log Everything for Forensic Analysis Hardening Summary Chapter 7: Nmap’s Prodigious NSE Basic Port Scanning The Nmap Scripting Engine Timing Templates Categorizing Scripts Contributing Factors Security Holes Authentication Checks Discovery Updating Scripts Script Type Regular Expressions Graphical User Interfaces Zenmap Summary Chapter 8: Malware Detection Getting Started Definition Update Frequency Malware Hash Registry Prevalent Threats LMD Features Monitoring Filesystems Installation Monitoring Modes Configuration Exclusions Running from the CLI Reporting Quarantining and Cleaning Updating LMD Scanning and Stopping Scans Cron Job Reporting Malware Apache Integration Summary Chapter 9: Password Cracking with Hashcat History Understanding Passwords Keyspace Hashes Using Hashcat Hashcat Capabilities Installation Hash Identification Choosing Attack Mode Downloading a Wordlist Rainbow Tables Running Hashcat oclHashcat Hashcat-Utils Summary Chapter 10: SQL Injection Attacks History Basic SQLi Mitigating SQLi in PHP Exploiting SQL Flaws Launching an Attack Trying SQLi Legally Summary Index EULA Linux Server Security: Hack and Defend presents a detailed guide for experienced administrators, aspiring hackers and other IT professionals seeking a more advanced understanding of Linux security. Written by a 20-year veteran of Linux server deployment, this book provides the insight of experience along with highly practical instruction. The topics range from the theory of past, current, and future attacks, to the mitigation of a variety of online attacks, all the way to empowering you to perform numerous malicious attacks yourself (in the hope that you will learn how to defend against them). By increasing your understanding of a hacker's tools and mindset you're less likely to be confronted by the all-too-common reality faced by many administrators these days: someone else has control of your systems. The techniques presented apply to almost all Linux distributions including the many Debian and Red Hat derivatives and some other Unix-type systems Linux Server Security: Hack And Defend Presents A Detailed Guide For Experienced Admins, Aspiring Hackers And Other It Professionals Seeking A More Advanced Understanding Of Linux Security. Written By A 20-year Veteran Of Linux Server Deployment This Book Provides The Insight Of Experience Along With Highly Practical Instruction. -- From The Publisher. Chris Binnie. Mode Of Access: World Wide Web. Credited as Contributors ------------------------ - **Production Manager**: Katie Wisor - **Manager of Content Development and Assembly**: Mary Beth Wakefield - **Professional Technology & Strategy Director**: Barry Pruett - **Business Manager**: Amy Knies - **Executive Editor**: Jim Minatel - **Project Coordinator, Cover**: Brent Savage