Open source software security

Suggested Material for Computer Security Class

30 November -0001
Instructor: Justin Keane (jkeane@madirish.net http://www.MadIrish.net)

Computer Security (6 weeks, Oct 15 - Nov 19 2003)



SUGGESTED READING:



Hacking Exposed: Network Security Secrets & Solutions, Fourth Edition
by Stuart McClure, Joel Scambray, George Kurtz
# Publisher: McGraw-Hill Osborne Media; 4th edition (February 25, 2003)
# ISBN: 0072227427

Maximum Security, Fourth Edition
by Anonymous (Author)
# Publisher: SAMS; 4th edition (December 16, 2002)
# ISBN: 0672324598

Know Your Enemy: Revealing the Security Tools, Tactics, and Motives of the Blackhat Community
by The Honeynet Project (Author)
# Publisher: Addison-Wesley Pub Co; Book and CD-ROM edition (August 31, 2001)
# ISBN: 0201746131

Intrusion Signatures and Analysis
by Mark Cooper, Stephen Northcutt, Matt Fearnow, Karen Frederick
# Publisher: Que; 1 edition (January 29, 2001)
# ISBN: 0735710635

WEBSITES:



  • Packet Storm (http://www.packetstormsecurity.nl/)
    "Packet Storm Security is the best place to look if you are searching for network intrusion or defense tools. They have breaking news and excerpts from bugtraq as well as some great links. Definitely caters to the Black Hat community, but its well worth taking a look if you want to see what sort of tools the bad guys are armed with.
  • Security Focus (www.securityfocus.com)
    "Clearing house for computer security information and news.
  • SNP - Security News Portal (www.securitynewsportal.com)
    "Security News Portal went under for a while due to repeated and extreme hacking attempts and break ins which they had no control over. They're back now and scrambling to regain their former stature as the premier computer security news site.
  • The HoneyNet Project (http://project.honeynet.org/)
    "The Honey Net Project is a great project aimed at tracking emerging and existing trends in computer intrusion and detection. The white papers are extremely informative.


MAILING LISTS:



bugtraq@securityfocus.com (go to securityfocus.com and register to receive this mailing)