Bug Hunter's Diary : A Guided Tour Through the Wilds of Software Security

  • ISBN13:


  • ISBN10:


  • Format: Paperback
  • Copyright: 11/11/2011
  • Publisher: Oreilly & Associates Inc
  • Purchase Benefits
  • Free Shipping On Orders Over $59!
    Your order must be $59 or more to qualify for free economy shipping. Bulk sales, PO's, Marketplace items, eBooks and apparel do not qualify for this offer.
  • Get Rewarded for Ordering Your Textbooks! Enroll Now
List Price: $39.95 Save up to $5.99
  • Buy New


Supplemental Materials

What is included with this book?

  • The New copy of this book will include any supplemental materials advertised. Please check the title of the book to determine if it should include any access cards, study guides, lab manuals, CDs, etc.
  • The Used, Rental and eBook copies of this book are not guaranteed to include any supplemental materials. Typically, only the book itself is included. This is true even if the title states it includes any access cards, study guides, lab manuals, CDs, etc.


Although ominous-sounding terms like "zero-day" and "exploit" are widely used, even many security professionals don't know how bug hunters actually find and attack software security flaws. In A Bug Hunter's Diary, readers follow along with security expert Tobias Klein as he tracks down and exploits bugs in some of the world's most popular programs. Whether by browsing source code, poring over disassembly, or fuzzing live programs, readers get an over-the-shoulder glimpse into the world of a bug hunter as Klein unearths security flaws and uses them to take control of affected systems. Readers learn about critical vulnerabilities in Mac OS X, Linux, Oracle Solaris, and the iPhone OS, among others. They also learn how the developers responsible for these flaws responded to Klein's discoveriesor didn't seem to respond at all. In this one-of-a-kind guide that mixes the personal with the deeply technical, readers learn how hackers approach difficult problems, see the fallout of a security advisory, and understand the true joys (and frustrations) of bug hunting.

Author Biography

Tobias Klein is a security researcher and founder of NESQ Security Labs an information security consulting and research company. He is the author of two information security books published in the German language by dpunkt.verlag.

Table of Contents

Acknowledgmentsp. xi
Introductionp. 1
Bug Huntingp. 3
Back to the '90sp. 9
Escape from the WWW Zonep. 25
NULL Pointer FTWp. 51
Browse and You're Ownedp. 71
One Kernel to Rule Them Allp. 87
A Bug Older Than 4.4BSDp. 113
The Ringfone Massacrep. 133
Hints for Huntingp. 149
Debuggingp. 163
Mitigationp. 179
Indexp. 191
Table of Contents provided by Ingram. All Rights Reserved.

Rewards Program

Write a Review