Skip to main content

Building Open Source Network Security Tools: Components and Techniques

Building Open Source Network Security Tools: Components and Techniques

Mike Schiffman

ISBN: 978-0-471-20544-9

Oct 2002

416 pages

Select type: Paperback

Product not available for purchase


Learn how to protect your network with this guide to building complete and fully functional network security tools

Although open source network security tools come in all shapes and sizes, a company will eventually discover that these tools are lacking in some area—whether it's additional functionality, a specific feature, or a narrower scope.

Written by security expert Mike Schiffman, this comprehensive book will show you how to build your own network security tools that meet the needs of your company. To accomplish this, you'll first learn about the Network Security Tool Paradigm in addition to currently available components including libpcap, libnet, libnids, libsf, libdnet, and OpenSSL. Schiffman offers a detailed discussion of these components, helping you gain a better understanding of the native datatypes and exported functions. Next, you'll find several key techniques that are built from the components as well as easy-to-parse programming examples. The book then ties the model, code, and concepts together, explaining how you can use this information to craft intricate and robust security programs. Schiffman provides you with cost-effective, time-saving guidance on how to build customized network security tools using existing components. He explores:

  • A multilayered model for describing network security tools
  • The ins and outs of several specific security-related components
  • How to combine these components into several useful network security techniques
  • Four different classifications for network security tools: passive reconnaissance, active reconnaissance, attack and penetration, and defensive

How to combine techniques to build customized network security tools
The companion Web site contains all of the code from the book.


About the Author.

About the Contributor.

About the Technical Reviewer.


The Network Security Tool Paradigm.

The Libpcap Library.

The Libnet Library.

The Libnids Library.

The Libsf Library.

The Libdnet Library.

The OpenSSL Library.

Passive Reconnaissance Techniques.

Active Reconnaissance Techniques.

Attack and Penetration Techniques.

Defensive Techniques.

Tying Everything Together: Firewalk.


“…if you ever write your own networking code, buy this book…” (iSeries Network, 6 March 2003)

Companion Site

Visit the companion site.