Print this page Share

Building Open Source Network Security Tools: Components and Techniques

ISBN: 978-0-471-20544-9
416 pages
October 2002
Building Open Source Network Security Tools: Components and Techniques (0471205443) cover image


Learn how to protect your network with this guide to building complete and fully functional network security tools

Although open source network security tools come in all shapes and sizes, a company will eventually discover that these tools are lacking in some area—whether it's additional functionality, a specific feature, or a narrower scope.

Written by security expert Mike Schiffman, this comprehensive book will show you how to build your own network security tools that meet the needs of your company. To accomplish this, you'll first learn about the Network Security Tool Paradigm in addition to currently available components including libpcap, libnet, libnids, libsf, libdnet, and OpenSSL. Schiffman offers a detailed discussion of these components, helping you gain a better understanding of the native datatypes and exported functions. Next, you'll find several key techniques that are built from the components as well as easy-to-parse programming examples. The book then ties the model, code, and concepts together, explaining how you can use this information to craft intricate and robust security programs. Schiffman provides you with cost-effective, time-saving guidance on how to build customized network security tools using existing components. He explores:

  • A multilayered model for describing network security tools
  • The ins and outs of several specific security-related components
  • How to combine these components into several useful network security techniques
  • Four different classifications for network security tools: passive reconnaissance, active reconnaissance, attack and penetration, and defensive

How to combine techniques to build customized network security tools
The companion Web site contains all of the code from the book.

See More

Table of Contents


About the Author.

About the Contributor.

About the Technical Reviewer.


The Network Security Tool Paradigm.

The Libpcap Library.

The Libnet Library.

The Libnids Library.

The Libsf Library.

The Libdnet Library.

The OpenSSL Library.

Passive Reconnaissance Techniques.

Active Reconnaissance Techniques.

Attack and Penetration Techniques.

Defensive Techniques.

Tying Everything Together: Firewalk.


See More

Author Information

MIKE D. SCHIFFMAN is Director of Security Architecture for @stake, the premier provider of professional security consulting services. Previously, he was director of research and development at Guardent, a leading provider of managed security services. He also held senior positions with ISS as well as Cambridge Technology Partners. Schiffman has developed numerous security tools and is the author of Hacker's Challenge.
See More


“…if you ever write your own networking code, buy this book…” (iSeries Network, 6 March 2003)
See More


Companion Site
Visit the companion site.
See More
Back to Top