Linux Binary

Learning Linux Binary Analysis, Packt, 2016

Software security people will want to read this book on
binary analysis in areas of security, forensics, and antivirus.

Topics

  • the ELF binary format of UNIX and Linux
  • Design tools for reverse engineering and binary forensic analysis
  • UNIX and Linux memory infections
  • ELF viruses
  • binary protection schemes

Security Strategies Linux

Security Strategies in Linux Platforms and Applications
By Jang, Michael
Book – 2015

Linux systems administrators will like this very readable book.

Contents:

  • Security threats to Linux
  • Basic components of Linux security
  • Starting Off: Getting Up and Running
  • User privileges and permissions
  • Filesystems, volumes, and encryption
  • Securing services
  • Networks, firewalls, and more
  • Networked filesystems and remote access
  • Networked application security
  • Kernel security risk mitigation
  • Managing security alerts and updates
  • Building and maintaining a security baseline
  • Testing and reporting
  • Detecting and responding to security breaches
  • Best practices and emerging technologies

Red Team Field Manual (RTFM)

RTFM Red Team Field Manual By Clark, Ben Book – 2013

What a strange little self published book. It will be useful to pen-testers and newbie crackers. Just 100 pages, listing command line tools that can be used to break in to remote servers.

For each tool, the basic syntax is presented, with almost no discussion. If you want more depth of understanding, Google will help you. Read and understand the (typically) 5-line scripts, and you will become expert at Bash, Powershell, and a few other system interpreters.

There is a section for Linux tools, and another for Windows tools. Then there are sections for Web, Databases, Programming, and Wireless.

Remember the pen-tester first rule: get permission before ‘exploring’ a remote server! The second rule: do not cause damage.

This book has no mention of some important pen-testing skills: how to negotiate a contract, and how to report the test results. The analysis phase could also fill a book.