I must admit that I have had this book on my shelf for about two years now so this review is of the 1st Edition.
This book doesn't really explain how to use all the tools that one would find at their disposal with BT3, but it does cover the pen-testing methodologies quite well. I'm not sure that Shon Harris actually wrote any of the chapters as her usual strange humor found in her CISSP books is strangely absent from this book. The book starts out covering some required albeit boring review of relevant US laws. The chapter on disclosure is interesting if you're not sure of what it is and the processes that you can (should) take.
I think the strength of this book is not realized until youits section. With a quick review of basic coding, you are then thrust into the fire with a review of C and ASM programming. This is obviously intended to whet your appetite for the Linux and Windows exploit and shellcode chapters that follow.
Bottom line: If you're looking for a book that just reviews a bunch of tools, then this book isn't it. If you want something that will teach you some concepts which are often hard to grasp then this book would be it.
This book doesn't really explain how to use all the tools that one would find at their disposal with BT3, but it does cover the pen-testing methodologies quite well. I'm not sure that Shon Harris actually wrote any of the chapters as her usual strange humor found in her CISSP books is strangely absent from this book. The book starts out covering some required albeit boring review of relevant US laws. The chapter on disclosure is interesting if you're not sure of what it is and the processes that you can (should) take.
I think the strength of this book is not realized until youits section. With a quick review of basic coding, you are then thrust into the fire with a review of C and ASM programming. This is obviously intended to whet your appetite for the Linux and Windows exploit and shellcode chapters that follow.
Bottom line: If you're looking for a book that just reviews a bunch of tools, then this book isn't it. If you want something that will teach you some concepts which are often hard to grasp then this book would be it.
Comment