54,15 €*
Versandkostenfrei per Post / DHL
Lieferzeit 1-2 Wochen
In The Practice of Network Security Monitoring, Mandiant CSO Richard Bejtlich shows you how to use NSM to add a robust layer of protection around your networks—no prior experience required. To help you avoid costly and inflexible solutions, he teaches you how to deploy, build, and run an NSM operation using open source software and vendor-neutral tools.
You'll learn how to:
-Determine where to deploy NSM platforms, and size them for the monitored networks
-Deploy stand-alone or distributed NSM installations
-Use command line and graphical packet analysis tools, and NSM consoles
-Interpret network evidence from server-side and client-side intrusions
-Integrate threat intelligence into NSM software to identify sophisticated adversaries
There's no foolproof way to keep attackers out of your network. But when they get in, you'll be prepared. The Practice of Network Security Monitoring will show you how to build a security net to detect, contain, and control them. Attacks are inevitable, but losing sensitive data shouldn't be.
In The Practice of Network Security Monitoring, Mandiant CSO Richard Bejtlich shows you how to use NSM to add a robust layer of protection around your networks—no prior experience required. To help you avoid costly and inflexible solutions, he teaches you how to deploy, build, and run an NSM operation using open source software and vendor-neutral tools.
You'll learn how to:
-Determine where to deploy NSM platforms, and size them for the monitored networks
-Deploy stand-alone or distributed NSM installations
-Use command line and graphical packet analysis tools, and NSM consoles
-Interpret network evidence from server-side and client-side intrusions
-Integrate threat intelligence into NSM software to identify sophisticated adversaries
There's no foolproof way to keep attackers out of your network. But when they get in, you'll be prepared. The Practice of Network Security Monitoring will show you how to build a security net to detect, contain, and control them. Attacks are inevitable, but losing sensitive data shouldn't be.
- Respected, well-known author with over 15,000 Twitter followers, nearly 2 million blog visitors, and popular trainings at the BlackHat conference
- Author's previous books have sold a combined 40,000 copies
- Book covers open source software; no commercial software required
Preface
Part I: Getting Started
Chapter 1: Network Security Monitoring Rationale
Chapter 2: Collecting Network Traffic: Access, Storage, and Management
Part II: Security Onion Deployment
Chapter 3: Stand-alone NSM Deployment and Installation
Chapter 4: Distributed Deployment
Chapter 5: SO Platform Housekeeping
Part III: Tools
Chapter 6: Command Line Packet Analysis Tools
Chapter 7: Graphical Packet Analysis Tools
Chapter 8: NSM Consoles
Part IV: NSM in Action
Chapter 9: NSM Operations
Chapter 10: Server-side Compromise
Chapter 11: Client-side Compromise
Chapter 12: Extending SO
Chapter 13: Proxies and Checksums
Conclusion
Appendix
SO Scripts and Configuration
Index
| Erscheinungsjahr: | 2013 |
|---|---|
| Fachbereich: | Datenkommunikation, Netze & Mailboxen |
| Genre: | Informatik |
| Rubrik: | Naturwissenschaften & Technik |
| Medium: | Taschenbuch |
| Seiten: | 376 |
| Inhalt: |
XXX
341 S. |
| ISBN-13: | 9781593275099 |
| ISBN-10: | 1593275099 |
| Sprache: | Englisch |
| Einband: | Kartoniert / Broschiert |
| Autor: | Bejtlich, Richard |
| Hersteller: |
No Starch Press
Penguin Random House LLC |
| Maße: | 233 x 177 x 30 mm |
| Von/Mit: | Richard Bejtlich |
| Erscheinungsdatum: | 15.07.2013 |
| Gewicht: | 0,833 kg |
- Respected, well-known author with over 15,000 Twitter followers, nearly 2 million blog visitors, and popular trainings at the BlackHat conference
- Author's previous books have sold a combined 40,000 copies
- Book covers open source software; no commercial software required
Preface
Part I: Getting Started
Chapter 1: Network Security Monitoring Rationale
Chapter 2: Collecting Network Traffic: Access, Storage, and Management
Part II: Security Onion Deployment
Chapter 3: Stand-alone NSM Deployment and Installation
Chapter 4: Distributed Deployment
Chapter 5: SO Platform Housekeeping
Part III: Tools
Chapter 6: Command Line Packet Analysis Tools
Chapter 7: Graphical Packet Analysis Tools
Chapter 8: NSM Consoles
Part IV: NSM in Action
Chapter 9: NSM Operations
Chapter 10: Server-side Compromise
Chapter 11: Client-side Compromise
Chapter 12: Extending SO
Chapter 13: Proxies and Checksums
Conclusion
Appendix
SO Scripts and Configuration
Index
| Erscheinungsjahr: | 2013 |
|---|---|
| Fachbereich: | Datenkommunikation, Netze & Mailboxen |
| Genre: | Informatik |
| Rubrik: | Naturwissenschaften & Technik |
| Medium: | Taschenbuch |
| Seiten: | 376 |
| Inhalt: |
XXX
341 S. |
| ISBN-13: | 9781593275099 |
| ISBN-10: | 1593275099 |
| Sprache: | Englisch |
| Einband: | Kartoniert / Broschiert |
| Autor: | Bejtlich, Richard |
| Hersteller: |
No Starch Press
Penguin Random House LLC |
| Maße: | 233 x 177 x 30 mm |
| Von/Mit: | Richard Bejtlich |
| Erscheinungsdatum: | 15.07.2013 |
| Gewicht: | 0,833 kg |
Ähnliche Produkte
Lieferzeit 4-7 Werktage
Lieferzeit 1-2 Wochen
Aktuell nicht verfügbar
Lieferzeit 1-2 Wochen
Lieferzeit 1-2 Wochen
Lieferzeit 4-7 Werktage
Lieferzeit 4-7 Werktage