Security support book

[Superd04]

hi guys, ive started a position with a company providing all areas of security- firewalls etc. and am pretty new to the whole security game.. so i am wondering can anyone advise of a good book that gives a good general overview of the whole security industry? cheers guys

 

[nhidalgo]

Have a look at the Security+ Study guide from Sybex. It gives a pretty good overview.

Nick

 

[jrbarnett]

Hacking Exposed: Network Security Secrets and Solutions by Stuart McClure, Joel Scambray, George Kurtz.
Osborne/McGraw-Hill,U.S. (1 May 2005)
ISBN: 0072260815

http://www.amazon.co.uk/Hacking-Exp...f=sr_1_13/202-4233677-1735011?ie=UTF8&s=books

John

 

[Superd04]

thanks guys.. great forum(s)

 

[tfg13]

I would say anything in the "Hacking Exposed" line. Also look at places like:

http://www.bookpool.com/ss/L?su=sec

Comes out with 64 pages of books. Depending on what applications you want to ensure are secured, what OS's you'll be dealing with, and what the current security stance is, will really help more than a single book. An overview of security is okay, but getting into it is a different story. I'm Security + certified, but when I moved over to our security team, there were a lot of things that really threw me for a loop. Is there any type of documentation there now as to how your security team is going to run, or what the goals are?

 

[qweasdzxcqweasdzxc]

Hacking exposed is a nice introduction and will allow you to pursue your study in many interesting directions and will set a good foundation while introducing you to the online communities, vendors, etc. You cant forget to brush up on some of the old classics though....Applied Cryptology is a great book taken in small doses. Even better, in my opinion, is the ultimate classic, The Codebreakers (tough to find a copy at the bookstore though.)
Check this link out..

http://www.amazon.com/gp/reader/0684831309/ref=sib_dp_pt/002-4306457-2291256#reader-link

I guarantee that it wont let you down.

 

[qweasdzxcqweasdzxc]

I almost forgot another important more indepth then hacking exposed book you must check out called "The Art of Virus Research & Defense"

http://www.amazon.com/Computer-Viru..._bbs_sr_1/002-4306457-2291256?ie=UTF8&s=books

 

[rliebsch]

O'Reilly. Any and All of their Sysadmin, Netadmin, and Security books.
Some of them are even put into CD libraries.

Hacking Exposed series is excellent, make sure you get all of them.
Hack Attacks Revealed are good as well.

that and google.

Robert Liebsch
Systems Psychologist,
Network Sociologist,
Security Pathologist,
User Therapist.

 

[jrbarnett]

I've been looking at another one lately which I think is worth adding to this collection.

The first section relates to the legal issues relating to security testing. Whilst written within the context of
US law, food for thought for anybody involved in this can be obtained regardless of geographical location.
There are chapters about automating security testing, exploiting known holes to your advantage with exammples for
Windows and Linux platforms, analysing the holes, reverse engineering and closing them.
All in, a useful reference book for anybody looking to take their IT security skills to the next level beyond the
Hacking Exposed series.

Details:

Title: Gray Hat Hacking: The Ethical Hackers Handbook
Authors: Shon Harris, Allen Harper, Chris Eagle, Jonathan Ness and Michael Lester
Publisher: Osborne McGraw-Hill 2005
ISBN: 0-07-225709-1
Price: USD $49.99 / CDN $72.95 / GBP £29.99

http://www.amazon.co.uk/s/ref=nb_ss...rch-alias=aps&field-keywords=gray+hat+hacking

John

 

[jrbarnett]

For anybody with responsibility for database servers, its worth getting hold of a copy of

http://www.amazon.com/Database-Hackers-Handbook-Defending-Servers/dp/0764578014

as well.

John