作者简介

Allen Harper，CISSP。曾任美国财政部、国税局计算机安全应急响应中心的安全分析师，现任N2NetSecurity公司总裁。Allen经常在Black Hat和Techno等会议上发表演讲。

Shon Harris，CISSP；Logical Security总裁、作家、教育工作者、安全顾问。Shon已经发表多篇著作和论文，Information Security Magazine杂志曾将她评为信息安全领域的25位杰出女性之一。

Jonathan Ness，CHFI，微软安全响应中心首席软件安全工程师。

Chris Eagle，美国加州蒙特利海军研究生院计算机科学系高级讲师。

Gideon J. Lenkey，CISSP，是Ra Security Systems公司总裁兼共同创始人。

Terron Williams，NSA IAM-IEM、CEH、CSSLP，Elster Electricity资深测试工程师。

This title presents the latest strategies for uncovering today's most devastating attacks. Thwart malicious network intrusion by using cutting-edge techniques for finding and fixing security flaws. Fully updated and expanded with nine new chapters, "Gray Hat Hacking: The Ethical Hacker's Handbook, Third Edition" details the most recent vulnerabilities and remedies along with legal disclosure methods. Learn from the experts how hackers target systems, defeat production schemes, write malicious code, and exploit flaws in Windows and Linux systems. Malware analysis, penetration testing, SCADA, VoIP, and Web security are also covered in this comprehensive resource. Develop and launch exploits using BackTrack and Metasploit. Employ physical, social engineering, and insider attack techniques. Build Perl, Python, and Ruby scripts that initiate stack buffer overflows. Understand and prevent malicious content in Adobe, Office, and multimedia files. Detect and block client-side, Web server, VoIP, and SCADA attacks. Reverse engineer, fuzz, and decompile Windows and Linux software. Develop SQL injection, cross-site scripting, and forgery exploits. Trap malware and rootkits using honeypots and SandBoxes.