This is the official CHFI study guide for professionals studying for the forensics exams and for professionals needing the skills to identify an intruder's footprints and to properly gather the necessary evidence to prosecute.

The EC-Council offers certification for ethical hacking and computer forensics. Their ethical hacker exam has become very popular as an industry gauge and we expect the forensics exam to follow suit.

The material is presented in a logical learning sequence: a section builds upon previous sections and a chapter on previous chapters. All concepts, simple and complex, are defined and explained when they appear for the first time. This book includes the following special chapter elements: Exam objectives covered in a chapter are clearly explained in the beginning of the chapter, Notes and Alerts highlight the crucial points, Exams Eye View section at the end of each chapter emphasizes the important points from the exams perspective, Key Terms present the definitions of key terms used in the chapter, Review Questions section at the end of each chapter that contains the questions modeled after the real exam questions based on the material covered in the chapter. The answers to these questions are presented with explanations in an appendix.

 This is the only practical, hands-on guide available to database administrators to secure their Oracle databases. This book will help the DBA to assess their current level of risk as well as their existing security posture. It will then provide practical, applicable knowledge to appropriately secure the Oracle database. The books companion Web site contains dozens of working scripts that DBAs can use to secure and automate their Oracle databases.

* The only practical, hands-on guide for securing your Oracle database published by independent experts.

* Companion Web site contains dozens of scripts to help you automate security tasks.

* Your Oracle database does not exist in a vacuum, so this book shows you how to securely integrate your database into your enterprise.

"-The seminal book on white-hat hacking and countermeasures… Should be required reading for anyone with a server or a network to secure.- –Bill Machrone, PC Magazine "The definitive compendium of intruder practices and tools." –Steve Steinke, Network Magazine

"For almost any computer book, you can find a clone. But not this one… A one-of-a-kind study of the art of breaking in." –UNIX Review
Here is the latest edition of international best-seller, Hacking Exposed. Using real-world case studies, renowned security experts Stuart McClure, Joel Scambray, and George Kurtz show IT professionals how to protect computers and networks against the most recent security vulnerabilities. You'll find detailed examples of the latest devious break-ins and will learn how to think like a hacker in order to thwart attacks. Coverage includes:

• Code hacking methods and countermeasures
• New exploits for Windows 2003 Server, UNIX/Linux, Cisco, Apache, and Web and wireless applications
• Latest DDoS techniques–zombies, Blaster, MyDoom
• All new class of vulnerabilities–HTTP Response Splitting
• and much more

Symantec's chief antivirus researcher has written the definitive guide to contemporary virus threats, defense techniques, and analysis tools. Unlike most books on computer viruses, The Art of Computer Virus Research and Defense is a reference written strictly for white hats: IT and security professionals responsible for protecting their organizations against malware. Peter Szor systematically covers everything you need to know, including virus behavior and classification, protection strategies, antivirus and worm-blocking techniques, and much more.

Szor presents the state-of-the-art in both malware and protection, providing the full technical detail that professionals need to handle increasingly complex attacks. Along the way, he provides extensive information on code metamorphism and other emerging techniques, so you can anticipate and prepare for future threats.

Szor also offers the most thorough and practical primer on virus analysis ever published—addressing everything from creating your own personal laboratory to automating the analysis process.

This book is a look at the top 10 IT security threats for 2008 as selected by the editors and readers of Infosecurity Magazine. Each chapter is selected from the Syngress Security Library for its assessment of the risk, potential defenses, and disaster recovery should an intrusion occur. This book is a must have reference for any IT security professional. 

* Provides IT Security Professionals with a first look at likely new threats to their enterprise.

* Includes real-world examples of system intrusions and compromised data.

* Provides techniques and strategies to detect, prevent, and recover.

* Includes coverage of PCI, VoIP, XSS, Asterisk, Social Engineering, Botnets, and Convergence.