Re: 'World's No. 1 hacker' tome rocks security world

[security curmudgeon <jericho () attrition org>]

No need to do any book review:

http://attrition.org/errata/charlatan/gregory_evans/evans07.html

Two reviews of his book found sweeping plagiarism. The first review came 
in at around 60% plagiarized material. A more in-depth review found the 
book almost entirely plagiarized (95%). Links and additional information 
included in the write-up linked above. Plagiarism has also been found in 
LIGATT's Twitter campaign and National Cyber Security web site.

For other information on Evans and LIGATT:

http://attrition.org/errata/charlatan/gregory_evans/


On Tue, 20 Jul 2010, Rob, grandpa of Ryan, Trevor, Devon & Hannah wrote:

: Date sent:            Tue, 20 Jul 2010 11:50:46 +0300 (EEST)
: From:                 Juha-Matti Laurio <juha-matti.laurio () netti fi>
: 
: > Summer time reading:
: > 
: > http://www.theregister.co.uk/2010/06/22/worlds_no_1_hacker/
: 
: OK, very quick book review on a 342 page PDF.  (Available at 
: http://www.bluedogdream.com/downloads/SecondEdition/NO1H_ebook.pdf if you 
: want to get it yourself.)
: 
: We start out with a four page resume, then six pages of photocopied testimonial 
: letters, then seven pages of photocopies of ads for his products and services, then 
: some more screenshots and photocopies of other stuff (did you know he was a 
: Certified Master Anti-Terrorism Specialist?)
: 
: The preface starts out with the question "What is the mission and goal of this 
: ?Short & Simple Guide?" and then badmouths IT managers and lists a bunch of 
: attacks over the years.  It never answers the question.
: 
: Whoever wrote the material (at least one section is a photocopy of an article by 
: someone else), it is a random melange of data without any kind of structure or 
: thought for a particular audience.  There is a lot of information that could be 
: useful, but you can find the same info (and the same level of organization) with 
: any search engine.  Some of it is good, some of it is lousy.  (It is easy for even the 
: rawest beginner to linguistic forensics to see that it was written by a bunch of 
: different authors: the style and structure of the chapters varies wildly.)  The 
: chapter on social engineering starts out quite well.  (It feels very familiar: I think 
: David Harley should have a better idea of the author than I do.)  It then dives into 
: a bunch of stuff having almost nothing to do with social engineering.
: 
: Basically, it is a bunch of articles on various topics relating to (mostly network) 
: security.  Since it is free, it might be useful to people starting out who want some 
: initial material to work with for intrusion experiments.
: 
: (Both ligatt.com and ligattsecurity.com seem to be down right now.)
: 
: ======================  (quote inserted randomly by Pegasus Mailer)
: rslade () vcn bc ca     slade () victoria tc ca     rslade () computercrime org
: Concern for man and his fate must always form the chief interest
: of all technical endeavors. Never forget this in the midst of
: your diagrams and equations.                       - Albert Einstein
: victoria.tc.ca/techrev/rms.htm blog.isc2.org/isc2_blog/slade/index.html
: http://blogs.securiteam.com/index.php/archives/author/p1/
: http://www.infosecbc.org/links http://twitter.com/rslade
: 
: _______________________________________________
: Fun and Misc security discussion for OT posts.
: https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
: Note: funsec is a public and open mailing list.
: 
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.