Topic
Grey hat
About: Grey hat is a research topic. Over the lifetime, 13 publications have been published within this topic receiving 82 citations.
Papers
Book•
9 Nov 2004
TL;DR: This chapter discusses ethical Hacking and the Legal System, Penetration Testing and Tools, and From Vulnerability to Exploit, and Closing the Holes: Mitigation.
Abstract: Cutting-edge techniques for finding and fixing critical security flaws Fortify your network and avert digital catastrophe with proven strategies from a team of security experts. Completely updated and featuring 12 new chapters, Gray Hat Hacking: The Ethical Hacker's Handbook, Fourth Edition explains the enemys current weapons, skills, and tactics and offers field-tested remedies, case studies, and ready-to-deploy testing labs. Find out how hackers gain access, overtake network devices, script and inject malicious code, and plunder Web applications and browsers. Android-based exploits, reverse engineering techniques, and cyber law are thoroughly covered in this state-of-the-art resource. Build and launch spoofing exploits with Ettercap and Evilgrade Induce error conditions and crash software using fuzzers Hack Cisco routers, switches, and network hardware Use advanced reverse engineering to exploit Windows and Linux software Bypass Windows Access Control and memory protection schemes Scan for flaws in Web applications using Fiddler and the x5 plugin Learn the use-after-free technique used in recent zero days Bypass Web authentication via MySQL type conversion and MD5 injection attacks Inject your shellcode into a browser's memory using the latest Heap Spray techniques Hijack Web browsers with Metasploit and the BeEF Injection Framework Neutralize ransomware before it takes control of your desktop Dissect Android malware with JEB and DAD decompilers Find one-day vulnerabilities with binary diffing
58 citations
14 citations
1 Jan 2004
TL;DR: This paper shows similar negative judgments of gray hat hacking from a variety of viewpoints by surveying three prominent normative ethical theories.
Abstract: This paper sets forth to explore the idea of gray hat hacking – computer hackers outside of an organization breaking into that organization's computer systems with the goal of securing it on behalf of the organization. Gray hat hackers pose a danger because of the uninformed opinions they use to justify their actions. This paper shows similar negative judgments of gray hat hacking from a variety of viewpoints by surveying three prominent normative ethical theories. The target audience is security and computing personnel, managers, supervisors, and others working with computers who may have little to no experience with philosophy and ethics.
13 citations
TL;DR: The starting points of the hackers' approach to layered computer systems are described, using networking examples, to describe the hacker culture from the IT industry and traditional academia.
Abstract: This two-part article discusses the factors distinguishing the hacker culture from the IT industry and traditional academia, using networking examples. This first part describes the starting points of the hackers' approach to layered computer systems.
13 citations
Book•
21 Dec 2014
TL;DR: A follow-up to the perennial best-seller Gray Hat Python, Justin Seitz's Black Hat Python explores the darker side of Python's capabilitieswriting network sniffers, manipulating packets, infecting virtual machines, creating stealthy trojans, extending the popular web hacking tool Burp Suite, and more.
Abstract: Python is the language of choice for hackers and security analysts for creating powerful and effective tools. Ever wonder how they do it?A follow-up to the perennial best-seller Gray Hat Python, Justin Seitz's Black Hat Python explores the darker side of Python's capabilitieswriting network sniffers, manipulating packets, infecting virtual machines, creating stealthy trojans, extending the popular web hacking tool Burp Suite, and more. You'll learn how to:Create a trojan command-and-control using Github Detect sandboxing and automate common malware tasks, like keylogging and screenshotting Escalate Windows privileges with creative process control Use offensive memory forensics tricks to retrieve password hashes and inject shellcode into a virtual machine Abuse Windows COM automation to perform a man-in-the-browser attack Exfiltrate data from a network most sneakily Insider techniques and creative challenges show you how to extend the hacks, and are sure to make Black Hat Python irresistible to anyone interested in offensive security.
7 citations
Related Topics (5)
Performance Metrics
| Year | Papers |
|---|---|
| 2019 | 1 |
| 2015 | 2 |
| 2014 | 1 |
| 2013 | 1 |
| 2009 | 1 |
| 2007 | 4 |