Reviews (19)

Accept no substitutes -- THE book to read on file systems
I decided to read and review three digital forensics books in order to gauge their strengths and weaknesses: "File System Forensic Analysis" (FSFA) by Brian Carrier, "Windows Forensics" (WF) by Chad Steel, and "EnCase Computer Forensics" (ECF) by Steve Bunting and William Wei.All three books contain the word "forensics" in the title, but they are very different.If you want authoritative and deeply technical guidance on understanding file systems, read FSFA.If you want to focus on understanding Windows from an investigator's standpoint, read WA.If you want to know more about EnCase (and are willing to tolerate or ignore information about forensics itself), read ECF.
The best work on the topic
Carrier's book has prooven invaluable to this digital forensics trainee, and I expect many of the old hands in the field will be keeping it on hand as well.If you're serious about computer forensics, you need a copy.

Very deep
I'm pretty technical, so I enjoyed this book.The author has more on file systems than just about anywhere, and I found it helpful in non security work also just to understand how the different systems work.
Read more

Subjects:  1. Computer - Internet    2. Computer Books: General    3. Computer Data Security    4. Computer security    5. Computers    6. Data structures (Computer science)    7. File organization (Computer science)    8. Internet - Security    9. Security - General    10. Computers / Internet / Security    11. Computing and Information Technology   

Reviews (14)

Complement to other sources available
I think author did a wonderful job filling in where other popular litrature about PIX left off.I read the CCSP book, and leared alot.This book filled in stuff that CCSP book just does not talk about.Not to knock the CCSP book; each auther can only fill in so much.It is a difficult decision on what to keep and what to leave off.I find the PIX and ASA book is very practical.If you want a good understanding of this platform, then you want this book as the pliers in your tool box of knowledge.Do not expect it to be swiss army tool though.I think author was especially considerate to the reader's needs to publish items that other litrature just does not cover.There is alot of good information.Nice pictures which addressed questions I had and even posted to some CCIE sites and there was no answer.Definately worth buying.

Very little on ASA
This book is very helpful for PIX firewalls, but is mislabeled for ASA. There is very little on the ASA product. Usually just a mention of command differences between ASA and PIX. If you are looking for a book on ASA do not buy this book.

One point makes this book a must have
Most commands explained have three lines:
Read more

Subjects:  1. Computer Books: General    2. Computer Data Security    3. Computers    4. Computers - Computer Security    5. Computers - General Information    6. Internet - Security    7. Security    8. Security - General    9. Computers / Internet / Security    10. Network security   

Reviews (46)

On topic, but needs much better editing
I read and studied this book," Official (ISC)2 Guide to the CISSP Exam", for my one study aid in quick preparation for the CISSP exam. I found the book's coverage of topics and the common body of knowledge to be fine; indeed the book is tuned to the CISSP exam's intended scope rather well. The problem with this book is quality control and the details. Just to get it out of the way, what annoyed me the most is that many of the sample "exam questions" are flawed lacking quality control. Not flawed like the CISSP exam questions themselves are known to be, but simply poorly written. The answer section for the sample questions has many flaws and mistakes: such as mixing up answers for other chapters' questions, unfinished text, etc. A frustrating way to end each chapter.
Cosider a must-have
I rate this book very hight because it is a serious content / concept based book for not only the exam but to really make things clear that it covers.
Good book, but not end-all be-all
A very useful resource for anybody interested in the field of Information Security. It provides an overview of the 10 bodies of knowledge that candidates for the CISSP exam are required to master. However, while this book is excellent as reference material, it is not as suitable as a study guide. Due to the nature of the book (it is authorized by many different writers), there is quite a bit of repetition of material, and slightly different viewpoints on what often appears to be the same issue. Sometimes, the differences between the viewpoints are not clearly articulated, which may lead to confusion.
Read more

Subjects:  1. Certification Guides - General    2. Computer Books: General    3. Computers    4. Computers - Certification    5. General    6. Networking - General    7. Security    8. Security - General    9. Computers / Security    10. Network security   

Reviews (114)

Avoid this book at all costs
Fortunately I only paid a few pound for this book at a book fair. I have been successfully day trading for over 5 years, have read in excess of 60 books. This is the worst I have seen. Oliver Velez should be taking out the backyard and horse whipped.

Beware of superbookdeals seller
If you want to buy the book, go ahead, just be careful of superbookdeals, they take your money but don't deliver and don't answer emails. Caveat Emptor.

Love this book!!!!!!!
This Book TOTALLY rocked!!!!! I read this book alot because it was so awesome ... Read more

Subjects:  1. Accounting - General    2. Business & Economics    3. Business/Economics    4. Consumer Finance    5. Day trading (Securities)    6. Electronic trading of securiti    7. Electronic trading of securities    8. Futures And Options Trading    9. Handbooks, manuals, etc    10. Investments & Securities - General    11. Personal Finance - Investing    12. Business & Economics / Investments & Securities    13. Financial services industry    14. Internet    15. Investment & securities   

Editorial Review

Gigantically comprehensive and carefully researched, Read more

Reviews (24)

Available for free
Before purchasing this book, you might like to browse through its contents.It is available in its entirety for free on the author's website.Here's the URL:
More high-level concepts and less hands-on guidance
This is certainly a good book for getting introduced to most high-level architectural concepts related to Network security, cryptography, mandatory/multi-level access control etc. From a application development perspective, this book falls short on how to build architecure, design and implement them into your business applications which ultimately meets the end-user. The author justifies the high-level concepts well enough from a generalist perspective, but the industry-standards from OASIS leans towards standards-based application security protocols..which pushes a developer/architect like me to take those suggestions first and how to apply them in real world.The book also does'nt address on how-to build security for emerging application architectures based on Service-oriented architecture (SOA), Identity Management, Net-centric Federated applications. As a developer/architect using Java or Microsoft .NET or open-source based distributed applications, I need guidance on how to implement the recommended concepts (in the book) for example using biometrics or smartcards for building multi-factor access control at my application-level...unfortunately I don't find any answers for real-world implementation.

Best security book on the market
This book is a must own and a must read.Ross Anderson may tweak people's noses on occassion...but usually because they need tweaking.Get this book now.Really. ... Read more

Subjects:  1. Computer Books And Software    2. Computer Data Security    3. Computer security    4. Computers    5. Computers - Computer Security    6. Computers - General Information    7. Distributed Computer Systems    8. Distributed processing    9. Electronic data processing    10. Management Information Systems    11. Networking - General    12. Programming - Systems Analysis & Design    13. Security - General    14. Computers / Networking / General    15. Data security & data encryption    16. Network security   

Features

• Illustrated

Reviews (18)

Mind Hacks: Tips & Tools for Using Your Brain
It's a book very interested about language in mind and speech comprehension. I read a short comment in BBC Focus magazine and I wish to read because it's very easy to learn the misteries of mind in cognitive science applied to language and psichology.

A fun book
It is not a typical "hacks" book in that it does not tell you how to utilize you brain more effectively or do neat things.It *does*have a lot of exercises that show you cool things on how your brain works with sections describing how your brain works - and a number of experiments (blind spot, Magnet interaction with the brain, word parsing in the the mind, and so on). This book goes very well with a recent title called _Mind Wide Open_ by Steven Johnson.
Interesting reading
I found this book to be interesting in the way that it presents it's topics. It was insightful and worth the purchase. It is the type of book that you select chapters that interest you as opposed to going cover to cover. ... Read more

Subjects:  1. Brain    2. Cognitive Psychology    3. Computer Books: General    4. Computers    5. Neuropsychology    6. Popular works    7. Psychology    8. Security - General    9. Thought and thnking    10. Attention    11. Cognitive theory, metacognition, vision, audition, motor skills, brain research, cortex, metacortex, sensori-motor    12. Computers / Social Aspects / Human-Computer Interaction    13. Data security & data encryption    14. Listening    15. Movement, Psychology of    16. Network security    17. Psychology & Psychiatry / Neuropsychology    18. Psychology/Cognitive Psychology    19. Reasoning    20. Thought and thinking    21. Visual perception   

Reviews (12)

i love GHH
i have read tonnes of books on this subject.starting from secrets of a super hacker by knightmare(published way back in 94, trust me dat was a great read n even 2day i find myself glued to da back as the first time i read it.now coming back 2 gray hat hacking.this is wat i would like 2 call the hacking reference book for the next generation.every one concerned about security should consider picking up this book.u might as well save some money n picking up more knowledge than any of the hacking exposed books in the market.no this book is not for button clicking script kiddies who play around wid trojans n claim to be hackers or web defacers(lamers).if u belong to da breed of script kiddies pick up this disgustin book by ankit fadia (oh by the way ive reviewed it).i wouuld liek to congradulate the authors for the outstanding work put into this book.howeever it would be great to see expanded materials on various topics and a little more detail in tool description.its not bad but it could still be better.so as i said before get dis book u wont regret it.so kiddies grow up keep those hacking exposed n ankit fadias books apart throw em in da firplace burn em do anythin .but go get dis one
Covers more than the typical hacking book
"Gray Hat Hacking - The Ethical Hacker's Handbook" is not your normal hacking book.This book should not be lumped in with the "Hacking Exposed" series nor the likes of "Counter Hack".What differentiates Gray Hat Hacking (GHH) from other books is the amount of code the book offers.This book is not for script kiddies, but instead shows how to advance to the next level of hacking (and, more importantly, prevention) by devoting over 100 pages to developing programming skills for both Linux and Window exploits.I had not encountered a book that dedicated this much space to scripting.
Great buy for every IT dept.
I bought this book from a store in D.C, and read it on my way back to India. I was impressed. Never found any book that deals with computer security and software vulnerabilities written so well. The reason I like this book is than others is because it does not only give you information that can help you in assessing your network security, but also gives you a basic introduction to the laws and legal technicalities. The contents of this book cover most of computer/network security related areas including technical implementation, planning, and defense. Therefore, it is not only for system engineers, but also for people managing IT departments.
Read more

Subjects:  1. Computer Books: General    2. Computers    3. Computers - Computer Security    4. Security - General    5. Computers / Security    6. Data security & data encryption    7. Network security   

Reviews (16)

Welcome to the future
If you don't own this book, then the world will one day 0wn you.Buy this book today and learn from the masters about the ultimate tool in the attacker's toolkit.Greg Hoglund's work is essential to computer security.It behooves us all to understand it.
Rootkit insights
One of the first books to go deeper in to rootkits of its kind.Not many books out there to give a understanding to IAT, SSDT, hooks, trampoline functions, and its relationship to rootkits.
Not a book for Kernel Driver Developer
This book tells me what RootKit really means. One useful thing I got from this book was that in Windows Kernel even simple code can be used against security. And that's it. Most techniques in this book are primitive to kernel developers. I don't recommend this book to serious kernel driver developers. "Windows Internals" and OSR Online should be the way to go. ... Read more

Subjects:  1. Access control    2. Computer - Internet    3. Computer Books: Internet General    4. Computer Data Security    5. Computer security    6. Computers    7. Internet - Security    8. Microcomputer Operating Environments    9. Computers / Internet / Security    10. Data security & data encryption    11. Network security   

Features

• Illustrated

Reviews (12)

VERY VERY HIGHLY RECOMMENDED!!
Are you interested in wanting to understand and implement the IPv6 protocol! If you are, then this book is for you. Author Silvia Hagen, has done an outstanding job of writing a book that covers IPv6 in detail and explains all of the new features and functions.
Excellent discussion of IPv6 protocols
I read and reviewed "IPv6 Network Administration" (INA) in August 2005 and "Running IPv6" (RI) in January 2006.I gave those books 5 stars, so I had high expectations for "IPv6 Essentials, 2nd Ed" (IE2E).INA and RI are very hands-on, implementation-specific books.IE2E is more concerned with explaining protocols and IPv6 features.In this respect, IE2E is the perfect complement to INA and RI.
Excellent 2nd edition contains lots of practical information
Internet Protocol version 6 (IPv6) is a network layer standard used by electronic devices to exchange data across a packet-switched internetwork and is intended to provide more addresses for networked devices, allowing, for example, each cell phone and mobile electronic device to have its own address. IPv6 is actually capable of supporting5×10^28 addresses for each of the roughly 6.5 billion people alive today.
Read more

Subjects:  1. Computer - Internet    2. Computer Books: General    3. Computer Networks    4. Computers    5. Computers - Communications / Networking    6. Internet - General    7. Internet - Security    8. Networking - Network Protocols    9. Computer / Internet    10. Computers / Networking / Network Protocols    11. Computers/Internet - General    12. Networking standards & protocols    13. TCP/IP (Computer network protocol)    14. ipv6, network, internet, protocol   

Features

• Illustrated

Reviews (16)

Interesting and detailed
Zalewski offers a nice overview of passive information extraction techniques. Each section covers one approach to the problem of determining something about someone's computer use without being detected. He provides an overview of the technology involved and then talks about how to exploit it.
Interesting
This is one of those books that you go HMMMMMM!!! Very Interesting, but most of the things in the book are hard to understand. Also, he jumps around alot like if he's having a conversation rather than an inside manual to Attacks.

Ages well
This is one of the few information security books that seem to age well: I reread it after over a year, and it still appears to be quite refreshing and up to date. This only goes to show the difference between books written out of genuine passion, and the rest. Big kudos to the author. ... Read more

Subjects:  1. Computer Books: General    2. Computer networks    3. Computers    4. Computers - Computer Security    5. Security - General    6. Security measures    7. Computers / Computer Security    8. Computers / Security    9. Data security & data encryption    10. Network security    11. security, privacy, network monitoring, policy enforcement, evidence analysis, IDS, honeypots, firewalls, forensics   

Editorial Review

A lot of computer-security textbooks approach the subject from adefensive point of view. "Do this, and probably you'll survive a particular kindof attack," they say. In refreshing contrast, Read more

Reviews (82)

Information Security
I had to purchase this book for college but it is a great read. One of the only textbooks that I have used that was actually interesting. They give clear examples and make it easy to follow thier explanations. Great book if you want to learn about hacking and some of the issues it involves.

Still solid but redundant and a bit tired
I cannot say anything more that other positive reviews have not already said.
Good, but aging
The book is not bad, but needs serious rewriting. The "fifth edition" is a joke-it looks more like an attempt to beat some more money out of the book's reputation than a serious release.
Read more

Subjects:  1. Computer Books: General    2. Computer networks    3. Computer security    4. Computers    5. Computers - Communications / Networking    6. Computers - Computer Security    7. Data protection    8. Internet - Security    9. Networking - General    10. Security - General    11. Security measures    12. Computer Communications & Networking    13. Computer fraud & hacking    14. Computers / Security    15. Data security & data encryption   

Reviews (1)

securing your system
Kuo and Beland help the sysadmin who might be new to SUSE Linux. Conceptually, you can think of the book as two interwoved parts. The first part is explaining generic linux, or even unix, operations. Applicable to a Red Hat or Solaris machine, perhaps.
Read more

Subjects:  1. Client-Server Computing - General    2. Computer Books: Operating Systems    3. Computers    4. Computers - Operating Systems    5. Operating Systems - Linux    6. Computers / Operating Systems / Linux    7. Network security    8. Unix, Unix Linux & Unix TCL/TK   

Reviews (6)

Good reference
This book helped me a lot. I recently deployed over 250 ASAs and was running into a lot of problems with the IPS SSM and VPN features. I got most of my answers from this book.

Very Amatuer
What a waste of time it was reading this book. If you are not very familiar with FW/IPS or VPN then this may be helpful, but if you have been working with this technology and Cisco's products that address these technologies (ASA, PIX, IPS, VPN3k) then please don't refer to this joke. Go online to cisco.com and do the research. Sometimes it felt as if whitepapers were copied and pasted.
Excellent Book on Cisco ASA.
I bought this book 2 weeks back for an ASA project that my company is going to deploy. I am really amused to see that each chapter starts off with an in-depth architectural overview of the features to be discussed. It then provides full step-by-step configuration examples with lots of deployment scenarios. It even covers many troubleshooting and monitoring examples that helped me a lot when I started deploying it in my lab network
Read more

Subjects:  1. Certification Guides - Cisco    2. Computer - Internet    3. Computer Books: General    4. Computer Data Security    5. Computer Network Management    6. Computers    7. Internet - Security    8. Networking - General    9. Security - General    10. Computers / Internet / Security    11. Internet    12. Network security   

Reviews (5)

Excellent Read
This book is written in such a style that is easy to understand, yet technical and detailed enough to maintain your interest and attention all the way through.
This one is a keeper!
As an author and instructor, I tend to be pretty picky about the books I choose to read and use in my classes. The authors present the material in a good logical progression. I especially like that it also provides sample evidence on the DVD. Most of the computer forensic books that currently exist contain mostly theory. This is the first good hands-on text that I have seen.
An essential A-Z guide for forensic investigations
There is a real lack of well written books in this category, and this one stands out because it is comprehensive, yet easy to digest and carefully laid out, including case studies to understand data capture and analysis techniques.
Read more

Subjects:  1. Computer - Internet    2. Computer Books: Internet General    3. Computer Crime    4. Computer Data Security    5. Computer crimes    6. Computer networks    7. Computer security    8. Computers    9. Internet - Security    10. Investigation    11. Security measures    12. Computers / Internet / Security    13. Data security & data encryption   

Reviews (6)

Outdated beyond usefulness.
Be advised:this book may have been relevant a couple years ago, but not anymore.ISACA has updated and slightly reorganized the exam.I believe this book actually interferred with my prep.The ISACA study guides and applicable experience are plenty to pass this exam (worked for me).Good luck.

CISSP or CISM?
I bought this book because there is no other book available (prep guide) that covers the CISM.As I read through the book there is an explicit sentence that reads "to better prepare you for the CISSP exam"; which test is this preg guide for?If you're going to cut and paste from similar works you've done in the past at least do the readers a favor and use the find/replace all function :).Overall it was a good read and I'll keep it around as a reference.

Question Errata Link
Co-author here. It has been brought to Dr. Krutz' and my attention that several errors in the CD questions were not corrected per our instructions prior to publication. Wiley has published a link to the CISM Prep Guide question errata sheet @:Read more

Subjects:  1. Certification    2. Certification Guides - General    3. Computer Bks - Communications / Networking    4. Computer Books And Software    5. Computer Data Security    6. Computer security    7. Computers    8. Computers - Computer Security    9. Electronic data processing per    10. Electronic data processing personnel    11. Examinations    12. Management    13. Networking - General    14. Security - General    15. Study guides    16. Computers / Security    17. Data security & data encryption    18. Network security    19. Privacy & data protection   

Reviews (5)

Excellent resource for security professionals
Richard Deal's book, The Complete Cisco VPN Configuration Guide, sets out to provide a comprehensive reference for networking professionals designing, deploying, and managing VPN solutions.This book covers the foundational information as well as step by step guides to configuring VPN solutions on Cisco VPN Concentrators, software and hardware clients, Cisco IOS routers, and Cisco PIX and ASA appliances.
The Best Cisco VPN Configuration Book
Richard Deal's "The Complete Cisco VPN Configuration Guide" provides a complete step by step guide on how to configure VPN on Cisco Concentrators, software (including Windows VPN client) and hardware client, IOS routers, PIX and ASA security appliances.
A useful read for security professionals
A thorough and complete review of VPN technologies, as implemented in Cisco infrastructure,Deal's `The Complete Cisco VPN Configuration Guide', is arranged as a twenty three chapter step by step technology review and one chapter of bonus case studies.
Read more

Subjects:  1. Computer - Internet    2. Computer Architecture    3. Computer Architecture - General    4. Computer Books: General    5. Computers    6. Internet - Security    7. Networking - Intranets & Extranets    8. Computers / Internet / Security    9. Network security   

Reviews (15)

Biased to Schneier's algorithms
This can be an annoying book for a serious developer, but I do know Writing a secure cryptosystem is very hard. People should be aware that it is hard, and they are likely to make mistakes. It isn't something that should be attempted lightly. If you are doing some actual work, it's not a good one. The book does not cover sufficient mathematic knowledge, and the edit is bit horrible as well. The authors chose to support their own algorithm shedding less light on AES and even RSA. That really made me stop reading this book.
Self contradictory and selflauding
From the very first pages, authors emphasize the need for public algorithms and peer review. Yet, the book is full of suggestions that appear first time in the book. They even take time to give fancy names to their new proposals. It is typical to see things like "While writing this chaper we came up with this new random number generator...". Well, the authors could have used some of public scrutiny they are so fond of.
Must be used with Applied Cryptography
As one other reader pointed out this book can be called Applied Cryptography Light. It is true, it gives you more theory and very little math. I did not like this book by itself since I was interested in actual implementation and i wanted to see full algorithms and math. I did end up buying Applied Cryptography and those 2 books combined provide an excellent reference. I was not able to give more than 3 stars since I did not feel i got any knowledge out of this book to be able to apply it in real life except reading: "Cryptography is hard, you might need to hire an expert..." while I want to become an expert myself one day! ... Read more

Subjects:  1. Computer Books: General    2. Computer security    3. Computers    4. Computers - Computer Security    5. Computers - General Information    6. Cryptography    7. Internet - General    8. Networking - General    9. Security - General    10. Computers / Security    11. Data security & data encryption    12. Privacy & data protection