商品描述
This book provides the reader a dynamic educational experience focused on stack based binary exploits. It provides a guide for educators in developing course syllabi and coursework for students. The goal of this book can further the education of important security topics of binary exploits focused on the execution stack of a program. The book will feature rich text descriptions paired with end-of-chapter exercises and comprehensive live examples with a ready-made Virtual Machine image that can be used directly for instruction. Readers will also develop new skills in how to analyze programs for such vulnerabilities, and how to exploit programs to executie arbitrary code.
商品描述(中文翻譯)
本書為讀者提供了一個動態的教育體驗,專注於基於堆疊的二進位漏洞。它為教育工作者提供了一個指導,幫助他們制定課程大綱和學生的課程作業。本書的目標是進一步推進有關二進位漏洞的重要安全主題的教育,特別是針對程式的執行堆疊。本書將包含豐富的文字描述,並配有章末練習和全面的實時範例,還提供了一個現成的虛擬機映像,可直接用於教學。讀者還將學會如何分析程式以發現此類漏洞,以及如何利用程式執行任意代碼。
作者簡介
Adam J. Aviv is an assistant professor at the United States Naval Academy. He received his Ph.D from the University of Pennsylvania, and his research area is in mobile device authentication. He has worked and published on varied topics, including applied cryptography, network security, and electronic voting. He is perhaps best known for his analysis of vulnerabilities in graphical password on touch screen devices, so call "smudge attacks."
作者簡介(中文翻譯)
亞當·J·阿維夫(Adam J. Aviv)是美國海軍軍官學院的助理教授。他在賓夕法尼亞大學獲得博士學位,研究領域為行動裝置身份驗證。他曾在多個主題上工作並發表論文,包括應用密碼學、網路安全和電子投票。他可能最為人知的是他對觸控螢幕裝置上圖形密碼漏洞的分析,這種攻擊被稱為「污漬攻擊」(smudge attacks)。
