«
»

Security


I don’t have time right now to give a lot of detail about computer security as a whole. But here’s what I’d say if you asked me how best to learn about network security and hacking:

Buy or ask to be given old computers (ask companies, friends, family, people who are buying new computers. If you’re rich, just buy a few basic boxes).
Install various brands of linux on some of them. Install a web server on one. Network them together with a hub. Attack services on the linux boxes. Use bugtraq to find exploits. See how the exploits work and start to learn C. Patch the vulnerable services and try again. Set up an FTP server. Sniff the passwords using ethereal while you login to FTP. Re-Network using a switch this time. Code an application to ARP flood the switch so you can sniff it again. Learn how to use hping, netcat, putty, scp, nmap, ftp and http.
Every time you root a box, code an application to automate it. Search the net (bugtraq) for existing exploits, if there are none, publish to bugtraq, if there are, patch and try again.
Keep looking for new tools and techniques, and try to figure some of it out yourself.

Take a look at the categories and tags that are related to web application security/ how to hack / etc and you’ll find some good info on this site :)

Related Posts:

, , , , ,

This entry was posted on March 13, 2009, 2:52 pm and is filed under hacking. You can follow any responses to this entry through RSS 2.0. Both comments and pings are currently closed.

  1. #1 by dane on April 17, 2009 - 10:19 pm

    well..

    thanks for this..

  2. #2 by thirugnanam on June 7, 2009 - 1:31 am

    i would like to know about hacking

    • #3 by user24 on June 7, 2009 - 4:07 am

      Thanks for commenting. I should have linked it in the original blog post.

      I’ve put together a little post about how to hack.

      • #4 by Rob on January 17, 2011 - 1:47 am

        Read this article, good read, saw you wrote it in 04. Would you still suggest the same books? Or is there something else you would suggest seeing as were in 2011. feel free to email me. I’m interested perhaps going to school for networks/security.

  3. #5 by Pashupati on August 22, 2010 - 6:10 pm

    Try having fun with Backtrack Linux and Damn Vulnerable Linux.
    Having fun is good for your health.

  4. #6 by on April 30, 2011 - 12:57 pm

    I tried to post a comment previously, although it has not shown up. I assume your spam filter may be broken?

Comments are closed.