Chapter 13. Application-Level Risks

In this chapter, I focus on application-level vulnerabilities and mitigation strategies. The effectiveness of firewalls and network segmentation mechanisms is severely impacted if vulnerabilities exist within accessible network services. In recent years, major security flaws in Unix and Windows systems have been exposed, resulting in large numbers of Internet-based hosts being compromised by hackers and worms alike.

Network Security Assessment

Chapter 1. Network Security Assessment

Chapter 2. The Tools Required

Chapter 3. Internet Host and Network Enumeration

Chapter 4. IP Network Scanning

Chapter 5. Assessing Remote Information Services

Chapter 6. Assessing Web Services

Chapter 7. Assessing Remote Maintenance Services

Chapter 8. Assessing FTP and Database Services

Chapter 9. Assessing Windows Networking Services

Chapter 10. Assessing Email Services

Chapter 11. Assessing IP VPN Services

Chapter 12. Assessing Unix RPC Services

Chapter 13. Application-Level Risks

13.1 The Fundamental Hacking Concept

13.2 The Reasons Why Software Is Vulnerable

13.3 Network Service Vulnerabilities and Attacks

13.4 Classic Buffer-Overflow Vulnerabilities

13.5 Heap Overflows

13.6 Integer Overflows

13.7 Format String Bugs

13.8 Memory Manipulation Attacks Recap

13.9 Mitigating Process Manipulation Risks

13.10 Recommended Secure Development Reading

Chapter 14. Example Assessment Methodology

Appendix A. TCP, UDP Ports, and ICMP Message Types

Appendix B. Sources of Vulnerability Information