Applied Network Security Monitoring: Collection, Detection, and Analysis
Autor Chris Sanders, Jason Smithen Limba Engleză Paperback – 19 ian 2014
Network security monitoring is based on the principle that prevention eventually fails. In the current threat landscape, no matter how much you try, motivated attackers will eventually find their way into your network. At that point, it is your ability to detect and respond to that intrusion that can be the difference between a small incident and a major disaster.
The book follows the three stages of the NSM cycle: collection, detection, and analysis. As you progress through each section, you will have access to insights from seasoned NSM professionals while being introduced to relevant, practical scenarios complete with sample data.
If you've never performed NSM analysis, Applied Network Security Monitoring will give you an adequate grasp on the core concepts needed to become an effective analyst. If you are already a practicing analyst, this book will allow you to grow your analytic technique to make you more effective at your job.
- Discusses the proper methods for data collection, and teaches you how to become a skilled NSM analyst
- Provides thorough hands-on coverage of Snort, Suricata, Bro-IDS, SiLK, and Argus
- Loaded with practical examples containing real PCAP files you can replay, and uses Security Onion for all its lab examples
- Companion website includes up-to-date blogs from the authors about the latest developments in NSM
Preț: 270.61 lei
Preț vechi: 338.26 lei
-20% Nou
Puncte Express: 406
Preț estimativ în valută:
51.78€ • 54.21$ • 42.85£
51.78€ • 54.21$ • 42.85£
Carte disponibilă
Livrare economică 15-29 martie
Livrare express 04-08 martie pentru 51.46 lei
Preluare comenzi: 021 569.72.76
Specificații
ISBN-13: 9780124172081
ISBN-10: 0124172083
Pagini: 496
Ilustrații: 40 illustrations
Dimensiuni: 152 x 229 x 23 mm
Greutate: 1 kg
Editura: ELSEVIER SCIENCE
ISBN-10: 0124172083
Pagini: 496
Ilustrații: 40 illustrations
Dimensiuni: 152 x 229 x 23 mm
Greutate: 1 kg
Editura: ELSEVIER SCIENCE
V-ar putea interesa
-
-14%Preț: 339.84 lei394.97 lei -
Risk Analysis and the Security SurveyJames F. Broder-21%Preț: 339.69 lei430.61 lei -
-13%Preț: 289.10 lei333.47 lei -
Building an Intelligence-Led Security ProgramAllan Liska-20%Preț: 459.17 lei573.95 lei -
Modern Competitive AnalysisSharon M. Oster-18%Preț: 1158.41 lei1407.65 lei -
-26%Preț: 354.60 lei481.32 lei -
Strategic Intelligence for the 21st Century: The Mosaic MethodAlfred Rolington-10%Preț: 274.85 lei306.09 lei -
Intelligence Analysis: How to Think in Complex EnvironmentsWayne Michael Hall-23%Preț: 365.52 lei475.89 lei -
-8%Preț: 387.74 lei421.46 lei -
Reshaping National Intelligence for an Age of InformationGregory F. TrevertonPreț: 250.30 lei -
Preț: 122.87 lei -
-15%Preț: 459.17 lei540.19 lei -
RiskDan Gardner-26%Preț: 79.32 lei107.13 lei -
Preț: 134.87 lei -
-20%Preț: 823.29 lei1029.12 lei -
Preț: 289.25 lei -
-18%Preț: 1168.37 lei1424.84 lei -
Intelligence – A Brief HistoryAT CiancioloPreț: 268.97 lei -
-20%Preț: 222.92 lei278.64 lei -
Open Source Data Warehousing and Business IntelligenceLakshman Bulusu-20%Preț: 999.92 lei1249.89 lei -
Open Source Intelligence in a Networked WorldDr. Anthony Olcott-12%Preț: 240.04 lei273.99 lei -
-20%Preț: 1245.16 lei1556.46 lei -
-19%Preț: 484.23 lei597.82 lei
Public țintă
Information security practitioners, network administrators, computer system administrators, IT professionals, NSM analysts, forensic analysts, incident responders, and an academic audience among information security majors.Cuprins
- Introduction to NSM
- Driving Data Collection
- The Sensor Platform
- Full Packet Capture Data
- Session Data
- Protocol Metadata
- Statistical Data
- Indicators of Compromise
- Target-Based Detection
- Signature-Based Detection with Snort
- Signature-Based Detection with Suricata
- Anomaly-Based Detection with Bro
- Early Warning AS&W with Honeypots
- Packet Analysis
- Friendly Intelligence
- Hostile Intelligence
- Differential Diagnosis of NSM Events
- Incident Morbidity and Mortality
- Malware Analysis for NSM
Recenzii
"... an extremely informative dive into the realm of network security data collection and analysis...well organized and thought through...I have only positive comments from my study." --The Ethical Hacker Network, Oct 31, 2014
Notă biografică
Chris Sanders is a technology consultant, author, and trainer. Chris serves as senior information security analyst for the Department of Defense as contracted through EWA Government Systems, Inc. In this role Chris is responsible for the management of a team of intrusion detection system analysts examining public and classified networks. His book Practical Packet Analysis is widely respected as one of the best practical use books on its topic and has sold several thousand copies internationally. Along with this, Chris has written and co-written hundreds of articles on the topics centered on network security, packet analysis, intrusion detection, and general network administration. Chris also serves as a SANS mentor training students on intrusion detection in-depth and incident handling.
In 2008, Chris founded the Rural Technology Fund. The RTF is a 501(c)(3) non-profit organization designed to provide scholarship opportunities to students from rural areas pursuing careers in computer technology. The organization also promotes technology advocacy in rural areas through various support programs.
You can read more about Chris on his personal blog located at http://www.chrissanders.org where he posts information regarding his latest projects as well as various technical articles and product reviews