This means more than just showing how to exploit a vulnerability. These educational
Gray Hat Hacking: The Ethical Hacker??™s Handbook
12
components should show the necessary countermeasures required to fight against these
types of attacks, and how to implement preventive measures to help ensure that these vulnerabilities
are not exploited. Many books and courses tout the message of being a
resource for the white hat and security professional. If you are writing a book or curriculum
for black hats, then just admit it. You will make just as much (or more) money, and
you will help eliminate the confusion between the concepts of hacking and ethical
hacking.
The Dual Nature of Tools
In most instances, the toolset used by malicious attackers is the same toolset used by
security professionals. A lot of people do not seem to understand this. In fact, the books,
classes, articles, websites, and seminars on hacking could be legitimately renamed
???security professional toolset education.??? The problem is that marketing people like to
use the word ???hacking??? because it draws more attention and paying customers.
As covered earlier, ethical hackers go through the same processes and procedures as
unethical hackers, so it only makes sense that they use the same basic toolset.
Pages:
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72