HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 59 guests and 2 members online
EH-Net News Feeds
Latest Additions
 
Advertisement

You are here: Home arrow Forum arrow EH-Netarrow News Items and General Discussion About EH-Netarrow Advice for the beginner
EH-Net
May 25, 2012, 04:40:29 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Advertise on EH-Net!! - Reasonable Rates, Highly Targeted Audience.
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Advice for the beginner  (Read 5617 times)
0 Members and 2 Guests are viewing this topic.
Kev
Guest
« on: July 27, 2006, 04:24:34 PM »
A long, long time ago in a far away galaxy script kiddies were people who couldn’t write their own programs and had to use other  peoples programs.  Now with the complexity of everything, I don’t know of a hacker that doesn’t use a program or exploit that someone else has written at least on some occasion. So I guess that makes us all script kiddies on some level. Today I believe that term is used more for people that use programs or exploits that they have no clue at all as to how it works.  Go to the Defcon event in Vegas and you will run into a lot of teenagers that don’t know  what a port is really. They know its something that should be open and that’s about it. That’s not to say there are some very knowledgeable people there, but they do have their fair share of script kiddies. 
  My advice to anyone just getting into all this is, learn TCP/IP. I mean really learn it very well. Don’t just memorize the stack protocols but see if you can actually visualize the entire process in your mind’s eye. Understand how the software works with the hardware to move a frame and how all this works together in a network.  This will pay off dividends later when working with tools, etc...  Even a book like TCP/IP for Dummies is really not a bad place to start, but dont  let it end there.  This would be my basic advice to a beginner and I promise they will not be disappointed later down the road.
« Last Edit: July 27, 2006, 05:01:25 PM by Kev » Logged
don
Editor-In-Chief
Administrator
Hero Member
*****
Online Online

Posts: 3917


Editor-In-Chief


View Profile WWW
« Reply #1 on: July 28, 2006, 12:13:58 AM »
I agree and apparently so do the authors of books on the topic. Both Ed Skoudis' book Counter Hack Reloaded and Michael Gregg's book CEH: Exam Prep both have in depth coverage of TCP/IP. In fact, you can read that specific chapter of Gregg's book here on this site by clicking the title link.

Your suggestion of being able to visualize the packet flow is a great one. Did you get a chance to look at the animation video I posted on the travles of a packet named Warriors of the Net?

Whether it is looking at Snort or firewall logs to figure out what has happened, doing real time analysis using Wireshark or scanning using Nmap, a good understanding of TCP/IP is crucial.

Don

PS - Hey Kev, you're making a nice push for the Free Monthly Giveaway. Keep up the good work.
Logged
CISSP, MCSE, CSTA, Security+ SME
Kev
Guest
« Reply #2 on: July 28, 2006, 10:03:08 AM »
Hey thanks.  Yes, a friend sent that to me a while back and that’s a great little animation. Everyone should take a few moments and watch it
Logged
LSOChris
Guest
« Reply #3 on: July 29, 2006, 12:13:18 PM »
being able to fix the broken exploit code (or code in genreal) people post on the net is good skill to have. if you are waiting for other people to create the .exe for you, you will be well behind the bad guys...
Logged
Kev
Guest
« Reply #4 on: July 29, 2006, 02:46:40 PM »
 Yes being able to repair the exploit code posted on the net is an important skill. Some people post code with intentional errors to mess up script kiddies. Those errors are usually small ones like a missing } or something commented out that should not be.
Logged
nebu10uz
Sr. Member
****
Offline Offline

Posts: 363



View Profile WWW
« Reply #5 on: August 16, 2006, 11:34:25 PM »
I always advice newbies to first read TCP/IP JumpStart: Internet Protocol Basics by Andrew G. Blank. This book explains the basic in an understandable writing which also includes illustration. It's easier for novice to grasp the concept after reading this book. From there, then you should read a book thats more comprehensive and deep in to details of the protocols, such as what we IT professional consider the bible of TCP/IP, The Protocols (TCP/IP Illustrated, Volume 1)  by W. Richard Stevens. This book is a bit outdated and ones should also consider other resources with updated information, however this book explains the foundation of TCP/IP.
Logged
Security+, OSCP, CEH
jimbob
Guest
« Reply #6 on: August 17, 2006, 03:41:58 AM »
TCP and IP seem to go hand in hand in most literature, does anyone know if there are texts teaching SCTP/IP or SCTP/IPv6? You never know, in the future this could be the book that gets recommended to newbs if SCTP ever catches on. I know squat about SCTP so any recommendations would be welcomed.

Jim
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.16 | SMF © 2011, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.08 seconds with 22 queries.
 

gk_static-ad_feb2012.jpg
Global Knowledge: Build Security Skills to Protect & Defend

els_130x200fixed2.gif
eLearnSecurity Student Course Now Live!
5% Off with Code
ELS-EH-5

SANS Deals 4 EH-Netters
$150 OFF Any SANS Course in Any Format!
Coupon Code: EHN_Connect Including SANS Security West 2012 & SANSFIRE 2012
Recent Forum Topics

cbtnuggets_logo_125.jpg
Try CBT Nuggets Free!

Vote For EH-Net

Add to Technorati Favorites
technorati fave

 
         
Advertisement

© 2012 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.