A Bug Hunter's Diary
Although ominous-sounding terms like OC zero-dayOCO and OC exploitOCO are widely used, even many security professionals donOCOt know how bug hunters actually find and attack software security flaws. In A Bug HunterOCOs Diary, readers follow along with security expert Tobias Klein as he tracks down and exploits bugs in some of the worldOCOs most popular programs. Whether by browsing source code, poring over disassembly, or fuzzing live programs, readers get an over-the-shoulder glimpse into the world of a bug hunter as Klein unearths security flaws and uses them to take control of affected systems. Readers learn about critical vulnerabilities in Mac OS X, Linux, Oracle Solaris, and the iPhone OS, among others. They also learn how the developers responsible for these flaws responded to KleinOCOs discoveries?or didnOCOt seem to respond at all. In this one-of-a-kind guide that mixes the personal with the deeply technical, readers learn how hackers approach difficult problems, see the fallout of a security advisory, and understand the true joys (and frustrations) of bug hunting.