HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 72 guests online
 
Advertisement

You are here: Home arrow Ethical Hacking Discussions and Related Certificationsarrow Programmingarrow New to infosec - Python
EH-Net
May 18, 2013, 12:21:56 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: New to infosec - Python  (Read 7575 times)
0 Members and 1 Guest are viewing this topic.
Trebin
Newbie
*
Offline Offline

Posts: 5


View Profile
« on: March 24, 2012, 10:10:13 PM »
I am new to infosec and I was going to read Gray Hat Python but a lot of the reviews said the code doesn't work. I am also studying for the CEH and was looking for a good set of books to read to learn python, understand hacking from a hackers perspective and help with ethical hacking in general. I have access to most of the CEH books so I am not too worried about those. I am really looking for a list or group of must read books for ethical hacking to understand the enemy in 2012.
Logged
cd1zz
Hero Member
*****
Offline Offline

Posts: 561


View Profile WWW
« Reply #1 on: March 25, 2012, 09:34:57 PM »
Grey Hat Python is a great book, if the code "doesn't work" they don't have the desire or aptitude to make it work. If you want to understand "hacking" there are a million books to read. I would start with Counter Hack Reloaded, it will open your eyes. From there, decide what you're interested in... and report back. This is a lifestyle and commitment, not just a profession Wink
Logged
OSCE | OSCP | GXPN | OSWP | CISSP
http://www.pwnag3.com
http://www.networkadminsecrets.com
ajohnson
Recruiters
Hero Member
*
Offline Offline

Posts: 1056


aka dynamik


View Profile WWW
« Reply #2 on: March 26, 2012, 11:08:57 AM »
What is your current skill level with Python, assembly, etc.? If you're just starting out, writing our own debugger and fuzzing drivers isn't the best way to learn the basics. Check out Coding for Penetrations for a good introduction into what you're looking for (I'll be providing a review shortly): http://syngress.com/hacking-and-penetration-testing/Coding-for-Penetration-Testers/

The O'Reilly Python Cookbook is also good for reviewing examples of functional code.
Logged
WIP: GCFA | www.infosiege.net | @infosiege

The day you stop learning is the day you start becoming obsolete.
unicityd
Full Member
***
Offline Offline

Posts: 156

Bored IT Manager, Crypto Nerd


View Profile WWW
« Reply #3 on: March 26, 2012, 12:06:07 PM »
You say that you're new to information security, but you don't say what your other skills are.  The advice that people can give you really depends on the CS/IT background that you already have.  If you're also new to IT, you should start with books on system/network administration and programming.  If you're already an accomplished programmer, Cisco guru, or sysadmin, you can pick a security book that relates to your existing experience and jump right in. 

If you're already strong in networking concepts you might want to grab Network Intrusion Detection by Stephen Northcutt (a little dated, but good), The Tao of Network Security Monitoring by Richard Beijtlich, or Snort IDS and IPS Toolkit by Jay Beale.  If your interest is in Cisco, the Hacking Exposed: Cisco book may suit you.

If you have system administration experience, you may want to grab one of the Hacking Exposed volumes or Counter Hack as recommended above (I haven't read that one).

If you're interested in application security, check out this reading list by Dino Dai Zovi (one of the top appsec researchers):

http://www.amazon.com/A-Bug-Hunters-Reading-List/lm/R21POHD6Y2DOLQ
Logged
BS in IT, CISSP, MS in IS Management (in progress)
Trebin
Newbie
*
Offline Offline

Posts: 5


View Profile
« Reply #4 on: March 27, 2012, 08:02:28 PM »
I have some experience with networking, working on the ccent now and also have some experience in programming. Python is what they are going to be using at work so that is one of the reasons I picked that one. I have some experience with the sys admin side of things and also with IA and compliance. I will look up some of the books here and use that as a start.
Logged
unicityd
Full Member
***
Offline Offline

Posts: 156

Bored IT Manager, Crypto Nerd


View Profile WWW
« Reply #5 on: March 29, 2012, 11:06:34 PM »
Python is a good language.   It's clean, powerful, and you can develop apps quickly with it.   I used to build all of my small or one-shot apps in Perl, but I switched to Python a while back.  It's easier to read/maintain which is particularly important to me since I don't code on a daily basis anymore. 

You should also learn enough C  that you can at least read basic code with some proficiency; it will be helpful for solving compilation problems, understanding exploit code, and reading some articles. 

As far as understanding the enemy, you should check out the papers from the Honeynet project titled "Know Your Enemy":

http://www.honeynet.org/papers
Logged
BS in IT, CISSP, MS in IS Management (in progress)
millwalll
Guest
« Reply #6 on: April 02, 2012, 06:50:48 AM »
securitytube has just released a python course so if your still trying to learn maybe of interest
Logged
ambient
Newbie
*
Offline Offline

Posts: 20



View Profile WWW
« Reply #7 on: April 03, 2012, 10:07:04 PM »
Quote from: cd1zz on March 25, 2012, 09:34:57 PM
I would start with Counter Hack Reloaded, it will open your eyes.

I agree with cd1zz. Counter Hack Reloaded is great. If I could go back to the time I started in infosec, I would choose this one. Ed Skoudis is a great instructor.
Logged
We secure the nation.
GPEN,eCPPT,C|EH,CCNA
http://incognitolab.com/
https://www.facebook.com/secure.thailand
mesho
Newbie
*
Offline Offline

Posts: 24


View Profile
« Reply #8 on: April 04, 2012, 06:38:30 AM »
I've a different opinion than others!

you should start with more basic Programming/Linux books before digging deeply in InfoSec..

i would suggest the following respectively:
* Practical Guide To Linux
* Advanced Shell Scripting (Free) from the tldp.org
* Learn Python the Hard Way (Free)
* Dive into Python (Free)
* The C Programming Language
* Programming from the groundup (Free)
* PC Assemly (Free)
* Art of Exploitation 2nd edition
* ShellCoder handbook 2nd edition
* Secret of Reverse Engineering

then you may consider to read the Gray Hat Python  Grin
Logged
magxtopher
Newbie
*
Offline Offline

Posts: 7


View Profile
« Reply #9 on: April 09, 2012, 05:38:30 AM »
Hey,
THE BASICS OF HACKING AND PENETRATION TESTING.
 ethical hacking and penetration testing made easy.
Author....PATRICK  ENGEBRETSON
Plz this book is 100 percent ok for newbie.
I just finish the book and ready to hack and pen test.
Logged
Pages: [1]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.104 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.