COVID-19 Update: We are currently shipping orders daily. However, due to transit disruptions in some geographies, deliveries may be delayed. To provide all customers with timely access to content, we are offering 50% off Science and Technology Print & eBook bundle options. Terms & conditions.
Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals - 1st Edition - ISBN: 9781597490054, 9780080489728

Sockets, Shellcode, Porting, and Coding: Reverse Engineering Exploits and Tool Coding for Security Professionals

1st Edition

Author: James Foster
Paperback ISBN: 9781597490054
eBook ISBN: 9780080489728
Imprint: Syngress
Published Date: 12th April 2005
Page Count: 700
Sales tax will be calculated at check-out Price includes VAT/GST
Price includes VAT/GST

Institutional Subscription

Secure Checkout

Personal information is secured with SSL technology.

Free Shipping

Free global shipping
No minimum order.


The book is logically divided into 5 main categories with each category representing a major skill set required by most security professionals:

  1. Coding – The ability to program and script is quickly becoming a mainstream requirement for just about everyone in the security industry. This section covers the basics in coding complemented with a slue of programming tips and tricks in C/C++, Java, Perl and NASL.

  2. Sockets – The technology that allows programs and scripts to communicate over a network is sockets. Even though the theory remains the same – communication over TCP and UDP, sockets are implemented differently in nearly ever language.

  3. Shellcode – Shellcode, commonly defined as bytecode converted from Assembly, is utilized to execute commands on remote systems via direct memory access.

  4. Porting – Due to the differences between operating platforms and language implementations on those platforms, it is a common practice to modify an original body of code to work on a different platforms. This technique is known as porting and is incredible useful in the real world environments since it allows you to not “recreate the wheel.”

  5. Coding Tools – The culmination of the previous four sections, coding tools brings all of the techniques that you have learned to the forefront. With the background technologies and techniques you will now be able to code quick utilities that will not only make you more productive, they will arm you with an extremely valuable skill that will remain with you as long as you make the proper time and effort dedications.

Key Features

*Contains never before seen chapters on writing and automating exploits on windows systems with all-new exploits.

*Perform zero-day exploit forensics by reverse engineering malicious code.

*Provides working code and scripts in all of the most common programming languages for readers to use TODAY to defend their networks.


The market for this book includes the information security, software development, and “hacker” communities. Information security professionals and “hacker-types” alike will be able to utilize this book as a sole resource for learning to understand, write, port, and automate vulnerabilities, exploits, and security tools all in one book. Never before has a book been so comprehensive or complete as it will be the only resource required to understand exploit details from start to finish.

Table of Contents

Section 1 – 0-day Basics Introduction 1 Security Coding 3 NASL Section 2 – Networking 0-Day Code Introduction 4 BSD Sockets 5 Winsock 6 Java Sockets Section 3 - Shellcode Introduction 7 Shellcode Techniques 8 Writing Shellcode Section 4 – Universal Exploitation Introduction 9 Writing Portable Code 10 Writing Portable Network Code Section 5 - Automation Introduction 11 Automating Exploits I 12 Automating Exploits II 13 Automating Exploits III 14 Automating Security Components 15 Automating Identification Tools Appendices: A - Glossary B - Technical Publications and References C - Tool and Application Compedium D - LibWhisker Primer E - Exploit Archives F - Useful Syscalls G - The Complete Data Conversion Table


No. of pages:
© Syngress 2005
12th April 2005
Paperback ISBN:
eBook ISBN:

About the Author

James Foster

James C. Foster, Fellow, is the Deputy Director of Global Security Solution Development for Computer Sciences Corporation where he is responsible for the vision and development of physical, personnel, and data security solutions. Preceding CSC, Foster was the Director of Research and Development for Foundstone Inc. and was responsible for all aspects of product, consulting, and corporate R&D initiatives. Prior to joining Foundstone, Foster was an Executive Advisor and Research Scientist with Guardent Inc. and an adjunct author at Information Security Magazine, subsequent to working as Security Research Specialist for the Department of Defense. Foster is also a well published author with multiple commercial and educational papers; and has authored, contributed, or edited for major publications to include Snort 2.1 Intrusion Detection (Syngress, ISBN: 1-931836-04-3), Hacking Exposed, Fourth Edition, Anti-Hacker Toolkit, Second Edition, Advanced Intrusion Detection, Hacking the Code: ASP.NET Web Application Security (Syngress, ISBN: 1-932266-65-8), Anti-Spam Toolkit, Google Hacking for Penetration Techniques (Syngress, ISBN: 1-931836-36-1), and Sockets, Shellcode, Porting and Coding (Syngress ISBN: 1-597490-05-9).

Affiliations and Expertise

Deputy Director of Global Security Development for Computer Sciences, Corp, U.S.A.

Ratings and Reviews