The Car Hacker's Handbook (Paperback)

Craig Smith

買這商品的人也買了...

商品描述

Modern cars are more computerized than ever. Infotainment and navigation systems, Wi-Fi, automatic software updates, and other innovations aim to make driving more convenient. But vehicle technologies haven't kept pace with today's more hostile security environment, leaving millions vulnerable to attack.

The Car Hacker's Handbook will give you a deeper understanding of the computer systems and embedded software in modern vehicles. It begins by examining vulnerabilities and providing detailed explanations of communications over the CAN bus and between devices and systems.

Then, once you have an understanding of a vehicle's communication network, you'll learn how to intercept data and perform specific hacks to track vehicles, unlock doors, glitch engines, flood communication, and more. With a focus on low-cost, open source hacking tools such as Metasploit, Wireshark, Kayak, can-utils, and ChipWhisperer, The Car Hacker's Handbook will show you how to:

  • Build an accurate threat model for your vehicle
  • Reverse engineer the CAN bus to fake engine signals
  • Exploit vulnerabilities in diagnostic and data-logging systems
  • Hack the ECU and other firmware and embedded systems
  • Feed exploits through infotainment and vehicle-to-vehicle communication systems
  • Override factory settings with performance-tuning techniques
  • Build physical and virtual test benches to try out exploits safely
If you're curious about automotive security and have the urge to hack a two-ton computer, make The Car Hacker's Handbook your first stop.

商品描述(中文翻譯)

現代汽車比以往更加電腦化。娛樂和導航系統、Wi-Fi、自動軟體更新和其他創新旨在使駕駛更加便利。但是,車輛技術沒有跟上當今更具敵意的安全環境,使數百萬車主容易受到攻擊。

《汽車駭客手冊》將讓您更深入地了解現代車輛中的電腦系統和嵌入式軟體。它首先檢視車輛的漏洞,並提供了CAN匯流排和設備之間通信的詳細解釋。

然後,一旦您了解了車輛的通信網絡,您將學習如何攔截數據並執行特定的駭客攻擊,例如追蹤車輛、解鎖車門、干擾引擎、洪水式通信等等。《汽車駭客手冊》專注於低成本、開源的駭客工具,如Metasploit、Wireshark、Kayak、can-utils和ChipWhisperer,將向您展示如何:

- 為您的車輛建立準確的威脅模型
- 反向工程CAN匯流排以偽造引擎信號
- 利用診斷和數據記錄系統的漏洞
- 駭入ECU和其他韌體和嵌入式系統
- 通過娛樂和車輛間通信系統提供漏洞利用
- 用性能調整技術覆寫出廠設定
- 建立物理和虛擬測試平台以安全地嘗試駭客攻擊

如果您對汽車安全感到好奇並且有想要駭入這種兩噸重的電腦的衝動,那麼《汽車駭客手冊》應該是您的首選。