Black Hat Go


Book Description

Like the best-selling Black Hat Python, Black Hat Go explores the darker side of the popular Go programming language. This collection of short scripts will help you test your systems, build and automate tools to fit your needs, and improve your offensive security skillset. Black Hat Go explores the darker side of Go, the popular programming language revered by hackers for its simplicity, efficiency, and reliability. It provides an arsenal of practical tactics from the perspective of security practitioners and hackers to help you test your systems, build and automate tools to fit your needs, and improve your offensive security skillset, all using the power of Go. You'll begin your journey with a basic overview of Go's syntax and philosophy and then start to explore examples that you can leverage for tool development, including common network protocols like HTTP, DNS, and SMB. You'll then dig into various tactics and problems that penetration testers encounter, addressing things like data pilfering, packet sniffing, and exploit development. You'll create dynamic, pluggable tools before diving into cryptography, attacking Microsoft Windows, and implementing steganography. You'll learn how to: Make performant tools that can be used for your own security projects Create usable tools that interact with remote APIs Scrape arbitrary HTML data Use Go's standard package, net/http, for building HTTP servers Write your own DNS server and proxy Use DNS tunneling to establish a C2 channel out of a restrictive network Create a vulnerability fuzzer to discover an application's security weaknesses Use plug-ins and extensions to future-proof productsBuild an RC2 symmetric-key brute-forcer Implant data within a Portable Network Graphics (PNG) image. Are you ready to add to your arsenal of security tools? Then let's Go!




Black Hat Go


Book Description

Like the best-selling Black Hat Python, Black Hat Go explores the darker side of the popular Go programming language. This collection of short scripts will help you test your systems, build and automate tools to fit your needs, and improve your offensive security skillset. Black Hat Go explores the darker side of Go, the popular programming language revered by hackers for its simplicity, efficiency, and reliability. It provides an arsenal of practical tactics from the perspective of security practitioners and hackers to help you test your systems, build and automate tools to fit your needs, and improve your offensive security skillset, all using the power of Go. You'll begin your journey with a basic overview of Go's syntax and philosophy and then start to explore examples that you can leverage for tool development, including common network protocols like HTTP, DNS, and SMB. You'll then dig into various tactics and problems that penetration testers encounter, addressing things like data pilfering, packet sniffing, and exploit development. You'll create dynamic, pluggable tools before diving into cryptography, attacking Microsoft Windows, and implementing steganography. You'll learn how to: Make performant tools that can be used for your own security projects Create usable tools that interact with remote APIs Scrape arbitrary HTML data Use Go's standard package, net/http, for building HTTP servers Write your own DNS server and proxy Use DNS tunneling to establish a C2 channel out of a restrictive network Create a vulnerability fuzzer to discover an application's security weaknesses Use plug-ins and extensions to future-proof productsBuild an RC2 symmetric-key brute-forcer Implant data within a Portable Network Graphics (PNG) image. Are you ready to add to your arsenal of security tools? Then let's Go!




I Wear the Black Hat


Book Description

One-of-a-kind cultural critic and New York Times bestselling author Chuck Klosterman “offers up great facts, interesting cultural insights, and thought-provoking moral calculations in this look at our love affair with the anti-hero” (New York magazine). Chuck Klosterman, “The Ethicist” for The New York Times Magazine, has walked into the darkness. In I Wear the Black Hat, he questions the modern understanding of villainy. When we classify someone as a bad person, what are we really saying, and why are we so obsessed with saying it? How does the culture of malevolence operate? What was so Machiavellian about Machiavelli? Why don’t we see Bernhard Goetz the same way we see Batman? Who is more worthy of our vitriol—Bill Clinton or Don Henley? What was O.J. Simpson’s second-worst decision? And why is Klosterman still haunted by some kid he knew for one week in 1985? Masterfully blending cultural analysis with self-interrogation and imaginative hypotheticals, I Wear the Black Hat delivers perceptive observations on the complexity of the antihero (seemingly the only kind of hero America still creates). As the Los Angeles Times notes: “By underscoring the contradictory, often knee-jerk ways we encounter the heroes and villains of our culture, Klosterman illustrates the passionate but incomplete computations that have come to define American culture—and maybe even American morality.” I Wear the Black Hat is a rare example of serious criticism that’s instantly accessible and really, really funny.




Black Hat Python, 2nd Edition


Book Description

Fully-updated for Python 3, the second edition of this worldwide bestseller (over 100,000 copies sold) explores the stealthier side of programming and brings you all new strategies for your hacking projects. When it comes to creating powerful and effective hacking tools, Python is the language of choice for most security analysts. In this second edition of the bestselling Black Hat Python, you’ll explore the darker side of Python’s capabilities: everything from writing network sniffers, stealing email credentials, and bruteforcing directories to crafting mutation fuzzers, investigating virtual machines, and creating stealthy trojans. All of the code in this edition has been updated to Python 3.x. You’ll also find new coverage of bit shifting, code hygiene, and offensive forensics with the Volatility Framework as well as expanded explanations of the Python libraries ctypes, struct, lxml, and BeautifulSoup, and offensive hacking strategies like splitting bytes, leveraging computer vision libraries, and scraping websites. You’ll even learn how to: Create a trojan command-and-control server using GitHub Detect sandboxing and automate common malware tasks like keylogging and screenshotting Extend the Burp Suite web-hacking tool Escalate Windows privileges with creative process control Use offensive memory forensics tricks to retrieve password hashes and find vulnerabilities on a virtual machine Abuse Windows COM automation Exfiltrate data from a network undetected When it comes to offensive security, you need to be able to create powerful tools on the fly. Learn how with Black Hat Python.




Black Hat Python, 2nd Edition


Book Description

Fully-updated for Python 3, the second edition of this worldwide bestseller (over 100,000 copies sold) explores the stealthier side of programming and brings you all new strategies for your hacking projects. When it comes to creating powerful and effective hacking tools, Python is the language of choice for most security analysts. In Black Hat Python, 2nd Edition, you’ll explore the darker side of Python’s capabilities—writing network sniffers, stealing email credentials, brute forcing directories, crafting mutation fuzzers, infecting virtual machines, creating stealthy trojans, and more. The second edition of this bestselling hacking book contains code updated for the latest version of Python 3, as well as new techniques that reflect current industry best practices. You’ll also find expanded explanations of Python libraries such as ctypes, struct, lxml, and BeautifulSoup, and dig deeper into strategies, from splitting bytes to leveraging computer-vision libraries, that you can apply to future hacking projects. You’ll learn how to: • Create a trojan command-and-control using GitHub • Detect sandboxing and automate common malware tasks, like keylogging and screenshotting • Escalate Windows privileges with creative process control • Use offensive memory forensics tricks to retrieve password hashes and inject shellcode into a virtual machine • Extend the popular Burp Suite web-hacking tool • Abuse Windows COM automation to perform a man-in-the-browser attack • Exfiltrate data from a network most sneakily When it comes to offensive security, your ability to create powerful tools on the fly is indispensable. Learn how with the second edition of Black Hat Python. New to this edition: All Python code has been updated to cover Python 3 and includes updated libraries used in current Python applications. Additionally, there are more in-depth explanations of the code and the programming techniques have been updated to current, common tactics. Examples of new material that you'll learn include how to sniff network traffic, evade anti-virus software, brute-force web applications, and set up a command-and-control (C2) system using GitHub.




White Coat, Black Hat


Book Description

By New Yorker and Atlantic writer Carl Elliott, a readable and even funny account of the serious business of medicine. A tongue-in-cheek account of the changes that have transformed medicine into big business. Physician and medical ethicist Carl Elliott tracks the new world of commercialized medicine from start to finish, introducing the professional guinea pigs, ghostwriters, thought leaders, drug reps, public relations pros, and even medical ethicists who use medicine for (sometimes huge) financial gain. Along the way, he uncovers the cost to patients lost in a health-care universe centered around consumerism.




Gray Hat Python


Book Description

Python is fast becoming the programming language of choice for hackers, reverse engineers, and software testers because it's easy to write quickly, and it has the low-level support and libraries that make hackers happy. But until now, there has been no real manual on how to use Python for a variety of hacking tasks. You had to dig through forum posts and man pages, endlessly tweaking your own code to get everything working. Not anymore. Gray Hat Python explains the concepts behind hacking tools and techniques like debuggers, trojans, fuzzers, and emulators. But author Justin Seitz goes beyond theory, showing you how to harness existing Python-based security tools—and how to build your own when the pre-built ones won't cut it. You'll learn how to: –Automate tedious reversing and security tasks –Design and program your own debugger –Learn how to fuzz Windows drivers and create powerful fuzzers from scratch –Have fun with code and library injection, soft and hard hooking techniques, and other software trickery –Sniff secure traffic out of an encrypted web browser session –Use PyDBG, Immunity Debugger, Sulley, IDAPython, PyEMU, and more The world's best hackers are using Python to do their handiwork. Shouldn't you?




Black Hat, White Witch


Book Description

Black Hat Bureau, Book 1 Remember that old line about how the only way out of the organization is in a pine box? Well, Rue Hollis spent ten years thinking she had escaped the Black Hat Bureau, no coffin required. Then her former partner had to go and shatter the illusion by showing up on her doorstep with grim tidings. As much as Rue wants to kick him to the curb, she agrees to hear him out for old times' sake, and what he says chills her to the bone. The Silver Stag was the most notorious paranormal serial killer in modern history, and Rue brought him down. Now a copycat has picked up where the Stag left off, and the Bureau wants her on the case. She beat the Stag once. They think she can do it again. But they don't know she's given up black magic, and she's not about to tell them. White witches are prey, and Rue is the hunter, not the hunted. Always. But can she take down the protégé of the man who almost beat her at her black witch best? If she wants to keep her new town, her new home, her new life, then she has no choice but to find out.




Was the Cat in the Hat Black?


Book Description

Racism is resilient, duplicitous, and endlessly adaptable, so it is no surprise that America is again in a period of civil rights activism. A significant reason racism endures is because it is structural: it's embedded in culture and in institutions. One of the places that racism hides-and thus perhaps the best place to oppose it-is books for young people. Was the Cat in the Hat Black? presents five serious critiques of the history and current state of children's literature tempestuous relationship with both implicit and explicit forms of racism. The book fearlessly examines topics both vivid-such as The Cat in the Hat's roots in blackface minstrelsy-and more opaque, like how the children's book industry can perpetuate structural racism via whitewashed covers even while making efforts to increase diversity. Rooted in research yet written with a lively, crackling touch, Nel delves into years of literary criticism and recent sociological data in order to show a better way forward. Though much of what is proposed here could be endlessly argued, the knowledge that what we learn in childhood imparts both subtle and explicit lessons about whose lives matter is not debatable. The text concludes with a short and stark proposal of actions everyone-reader, author, publisher, scholar, citizen- can take to fight the biases and prejudices that infect children's literature. While Was the Cat in the Hat Black? does not assume it has all the answers to such a deeply systemic problem, its audacity should stimulate discussion and activism.




White and Black Hat Hackers


Book Description

Hackers are those individuals who gain access to computers or networks without official permission. In this intriguing resource, readers learn the differences among white hat, black hat, and gray hat hackers and their ways of working concerning computer networks today. The origins and history of hacker culture are examined, as are the law enforcement methods of catching criminals. Some of the topics covered are the motives for hacking, black hat targets, online hazards, malware programs, and typical hacker techniques. Government-sponsored hacking in cyber warfare efforts, hactivism, and famous hackers are also reviewed.