Hacking: The Next Generation

Ainda resfolega na pedra, acabado de sair do prelo: Hacking, The Next Generation. Escrito a três mãos, com as penas de Nitesh Dhanjani, Billy Rios e Brett Hardin, foi comissionado, impresso e distribuído pela O'Reilly.

Ainda não acabei de ler mas, até agora, não decepcionou. Sobretudo porque, por muito que tenhamos aprendido e desenvolvido com o tempo, não há nada como rever os conceitos e as técnicas de uma forma estruturada. Num livro, I mean.

O rol de capítulos inclui:

  1. Intelligence Gathering: Peering Through the Windows to Your Organization
    • Physical Security Engineering
    • Google Earth
    • Social Engineering Call Centers
    • Search Engine Hacking
    • Leveraging Social Networks
    • Tracking Employees
    • What Information Is Important?
  2. Inside-Out Attacks: The Attacker Is the Insider
    • Man on the Inside
    • Cross-Site Scripting (XSS)
    • Cross-Site Request Forgery (CSRF)
    • Content Ownership
    • Advanced Content Ownership Using GIFARs
    • Stealing Files from the Filesystem
  3. The Way It Works: There Is No Patch
    • Exploiting Telnet and FTP
    • Abusing SMTP
    • Abusing ARP
  4. Blended Threats: When Applications Exploit Each Other
    • Application Protocol Handlers
    • Blended Attacks
    • Finding Blended Threats
  5. Cloud Insecurity: Sharing the Cloud with Your Enemy
    • What Changes in the Cloud
    • Attacks Against the Cloud
  6. Abusing Mobile Devices: Targeting Your Mobile Workforce
    • Targeting Your Mobile Workforce
  7. Infiltrating the Phishing Underground: Learning from Online Criminals?
    • The Fresh Phish Is in the Tank
    • Examining the Phishers
    • The Loot
    • Infiltrating the Underground
  8. Influencing Your Victims: Do What We Tell You, Please
    • The Calendar Is a Gold Mine
    • Social Identities
    • Hacking the Psyche
  9. Hacking Executives: Can Your CEO Spot a Targeted Attack?
    • Fully Targeted Attacks Versus Opportunistic Attacks
    • Motives
    • Information Gathering
    • Attack Scenarios
  10. Case Studies: Different Perspectives
    • The Disgruntled Employee
    • The Silver Bullet

Ou seja, promete. Promete e entrega. Para atingir a excelência, tinha que ter sido escrito em Português, claro : ) ... (mas fica para a próxima!). Mais informação, encomendas e reviews estão disponíveis na Amazon.com (ou Amazon.co.uk) e na própria O'Reilly.