HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 40 guests online
 
Free Business and Tech Magazines and eBooks

You are here: Home arrow EH-Netarrow News Items and General Discussion About EH-Netarrow Advice for the beginner
EH-Net
May 25, 2013, 10:25:29 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Advice for the beginner  (Read 6351 times)
0 Members and 1 Guest are viewing this topic.
Kev
Guest
« on: July 27, 2006, 04:24:34 PM »
A long, long time ago in a far away galaxy script kiddies were people who couldn’t write their own programs and had to use other  peoples programs.  Now with the complexity of everything, I don’t know of a hacker that doesn’t use a program or exploit that someone else has written at least on some occasion. So I guess that makes us all script kiddies on some level. Today I believe that term is used more for people that use programs or exploits that they have no clue at all as to how it works.  Go to the Defcon event in Vegas and you will run into a lot of teenagers that don’t know  what a port is really. They know its something that should be open and that’s about it. That’s not to say there are some very knowledgeable people there, but they do have their fair share of script kiddies. 
  My advice to anyone just getting into all this is, learn TCP/IP. I mean really learn it very well. Don’t just memorize the stack protocols but see if you can actually visualize the entire process in your mind’s eye. Understand how the software works with the hardware to move a frame and how all this works together in a network.  This will pay off dividends later when working with tools, etc...  Even a book like TCP/IP for Dummies is really not a bad place to start, but dont  let it end there.  This would be my basic advice to a beginner and I promise they will not be disappointed later down the road.
« Last Edit: July 27, 2006, 05:01:25 PM by Kev » Logged
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 4169


Editor-In-Chief


View Profile WWW
« Reply #1 on: July 28, 2006, 12:13:58 AM »
I agree and apparently so do the authors of books on the topic. Both Ed Skoudis' book Counter Hack Reloaded and Michael Gregg's book CEH: Exam Prep both have in depth coverage of TCP/IP. In fact, you can read that specific chapter of Gregg's book here on this site by clicking the title link.

Your suggestion of being able to visualize the packet flow is a great one. Did you get a chance to look at the animation video I posted on the travles of a packet named Warriors of the Net?

Whether it is looking at Snort or firewall logs to figure out what has happened, doing real time analysis using Wireshark or scanning using Nmap, a good understanding of TCP/IP is crucial.

Don

PS - Hey Kev, you're making a nice push for the Free Monthly Giveaway. Keep up the good work.
Logged
CISSP, MCSE, CSTA, Security+ SME
Kev
Guest
« Reply #2 on: July 28, 2006, 10:03:08 AM »
Hey thanks.  Yes, a friend sent that to me a while back and that’s a great little animation. Everyone should take a few moments and watch it
Logged
LSOChris
Guest
« Reply #3 on: July 29, 2006, 12:13:18 PM »
being able to fix the broken exploit code (or code in genreal) people post on the net is good skill to have. if you are waiting for other people to create the .exe for you, you will be well behind the bad guys...
Logged
Kev
Guest
« Reply #4 on: July 29, 2006, 02:46:40 PM »
 Yes being able to repair the exploit code posted on the net is an important skill. Some people post code with intentional errors to mess up script kiddies. Those errors are usually small ones like a missing } or something commented out that should not be.
Logged
nebu10uz
Sr. Member
****
Offline Offline

Posts: 368



View Profile WWW
« Reply #5 on: August 16, 2006, 11:34:25 PM »
I always advice newbies to first read TCP/IP JumpStart: Internet Protocol Basics by Andrew G. Blank. This book explains the basic in an understandable writing which also includes illustration. It's easier for novice to grasp the concept after reading this book. From there, then you should read a book thats more comprehensive and deep in to details of the protocols, such as what we IT professional consider the bible of TCP/IP, The Protocols (TCP/IP Illustrated, Volume 1)  by W. Richard Stevens. This book is a bit outdated and ones should also consider other resources with updated information, however this book explains the foundation of TCP/IP.
Logged
Security+, OSCP, CEH
jimbob
Guest
« Reply #6 on: August 17, 2006, 03:41:58 AM »
TCP and IP seem to go hand in hand in most literature, does anyone know if there are texts teaching SCTP/IP or SCTP/IPv6? You never know, in the future this could be the book that gets recommended to newbs if SCTP ever catches on. I know squat about SCTP so any recommendations would be welcomed.

Jim
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.068 seconds with 24 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Free Business and Tech Magazines and eBooks

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.