47,00 €*
Versandkostenfrei per Post / DHL
Aktuell nicht verfügbar
* Preparing your environment for effective incident response
* Leveraging MITRE ATT&CK and threat intelligence for active network defense
* Local and remote triage of systems using PowerShell, WMIC, and open-source tools
* Acquiring RAM and disk images locally and remotely
* Analyzing RAM with Volatility and Rekall
* Deep-dive forensic analysis of system drives using open-source or commercial tools
* Leveraging Security Onion and Elastic Stack for network security monitoring
* Techniques for log analysis and aggregating high-value logs
* Static and dynamic analysis of malware with YARA rules, FLARE VM, and Cuckoo Sandbox
* Detecting and responding to lateral movement techniques, including pass-the-hash, pass-the-ticket, Kerberoasting, malicious use of PowerShell, and many more
* Effective threat hunting techniques
* Adversary emulation with Atomic Red Team
* Improving preventive and detective controls
* Preparing your environment for effective incident response
* Leveraging MITRE ATT&CK and threat intelligence for active network defense
* Local and remote triage of systems using PowerShell, WMIC, and open-source tools
* Acquiring RAM and disk images locally and remotely
* Analyzing RAM with Volatility and Rekall
* Deep-dive forensic analysis of system drives using open-source or commercial tools
* Leveraging Security Onion and Elastic Stack for network security monitoring
* Techniques for log analysis and aggregating high-value logs
* Static and dynamic analysis of malware with YARA rules, FLARE VM, and Cuckoo Sandbox
* Detecting and responding to lateral movement techniques, including pass-the-hash, pass-the-ticket, Kerberoasting, malicious use of PowerShell, and many more
* Effective threat hunting techniques
* Adversary emulation with Atomic Red Team
* Improving preventive and detective controls
Steve Anson is a SANS Certified Instructor and co-founder of leading IT security company Forward Defense. He has over 20 years of experience investigating cybercrime and network intrusion incidents. As a former US federal agent, Steve specialized in intrusion investigations for the FBI and DoD. He has taught incident response and digital forensics techniques to thousands of students around the world on behalf of the FBI Academy, US Department of State, and the SANS Institute. He has assisted governments in over 50 countries to improve their strategic and tactical response to computer-facilitated crimes and works with a range of multinational organizations to prevent, detect and respond to network security incidents.
Chapter 1 The Threat Landscape 3
Chapter 2 Incident Readiness 21
Part II Respond 45
Chapter 3 Remote Triage 47
Chapter 4 Remote Triage Tools 67
Chapter 5 Acquiring Memory 103
Chapter 6 Disk Imaging 133
Chapter 7 Network Security Monitoring 161
Chapter 8 Event Log Analysis 199
Chapter 9 Memory Analysis 235
Chapter 10 Malware Analysis 277
Chapter 11 Disk Forensics 311
Chapter 12 Lateral Movement Analysis 345
Part III Refine 379
Chapter 13 Continuous Improvement 381
Chapter 14 Proactive Activities 399
Index 419
| Erscheinungsjahr: | 2020 |
|---|---|
| Fachbereich: | Datenkommunikation, Netze & Mailboxen |
| Genre: | Informatik |
| Rubrik: | Naturwissenschaften & Technik |
| Medium: | Taschenbuch |
| Seiten: | 464 |
| Inhalt: | 464 S. |
| ISBN-13: | 9781119560265 |
| ISBN-10: | 1119560268 |
| Sprache: | Englisch |
| Einband: | Kartoniert / Broschiert |
| Autor: | Anson, Steve |
| Hersteller: | John Wiley & Sons Inc |
| Maße: | 233 x 189 x 27 mm |
| Von/Mit: | Steve Anson |
| Erscheinungsdatum: | 09.03.2020 |
| Gewicht: | 0,765 kg |
Steve Anson is a SANS Certified Instructor and co-founder of leading IT security company Forward Defense. He has over 20 years of experience investigating cybercrime and network intrusion incidents. As a former US federal agent, Steve specialized in intrusion investigations for the FBI and DoD. He has taught incident response and digital forensics techniques to thousands of students around the world on behalf of the FBI Academy, US Department of State, and the SANS Institute. He has assisted governments in over 50 countries to improve their strategic and tactical response to computer-facilitated crimes and works with a range of multinational organizations to prevent, detect and respond to network security incidents.
Chapter 1 The Threat Landscape 3
Chapter 2 Incident Readiness 21
Part II Respond 45
Chapter 3 Remote Triage 47
Chapter 4 Remote Triage Tools 67
Chapter 5 Acquiring Memory 103
Chapter 6 Disk Imaging 133
Chapter 7 Network Security Monitoring 161
Chapter 8 Event Log Analysis 199
Chapter 9 Memory Analysis 235
Chapter 10 Malware Analysis 277
Chapter 11 Disk Forensics 311
Chapter 12 Lateral Movement Analysis 345
Part III Refine 379
Chapter 13 Continuous Improvement 381
Chapter 14 Proactive Activities 399
Index 419
| Erscheinungsjahr: | 2020 |
|---|---|
| Fachbereich: | Datenkommunikation, Netze & Mailboxen |
| Genre: | Informatik |
| Rubrik: | Naturwissenschaften & Technik |
| Medium: | Taschenbuch |
| Seiten: | 464 |
| Inhalt: | 464 S. |
| ISBN-13: | 9781119560265 |
| ISBN-10: | 1119560268 |
| Sprache: | Englisch |
| Einband: | Kartoniert / Broschiert |
| Autor: | Anson, Steve |
| Hersteller: | John Wiley & Sons Inc |
| Maße: | 233 x 189 x 27 mm |
| Von/Mit: | Steve Anson |
| Erscheinungsdatum: | 09.03.2020 |
| Gewicht: | 0,765 kg |
Ähnliche Produkte
Lieferzeit 1-2 Wochen
Lieferzeit 1-2 Wochen
Lieferzeit 1-2 Werktage
Lieferzeit 1-2 Werktage
Lieferzeit 1-2 Werktage
Lieferzeit 2-3 Wochen
Lieferzeit 4-7 Werktage
Lieferzeit 4-7 Werktage
Lieferzeit 4-7 Werktage
