Windows Security Monitoring: Scenarios and Patterns
暫譯: Windows安全監控:情境與模式
Andrei Miroshnikov
- 出版商: Wiley
- 出版日期: 2018-04-17
- 售價: $1,750
- 貴賓價: 9.5 折 $1,662
- 語言: 英文
- 頁數: 648
- 裝訂: Paperback
- ISBN: 1119390648
- ISBN-13: 9781119390640
-
相關分類:
資訊安全、kali-linux
立即出貨 (庫存=1)
買這商品的人也買了...
-
大話存儲 (終極版)(存儲系統底層架構原理極限剖析)$1,194$1,134 -
網路鑑證學習手冊:封包分析x日誌調查x惡意程式檢測$380$300 -
Hardware and Software Support for Virtualization$2,450$2,327 -
Computer Networking Problems and Solutions: An innovative approach to building resilient, modern networks$2,660$2,527 -
Beginning Backup and Restore for SQL Server: Data Loss Management and Prevention Techniques$1,960$1,920 -
圖解 AI 人工智慧大未來:關於人工智慧一定要懂得 96 件事$380$323 -
Azure Solutions Architect Study Guide: Exams Az-300 and Az-301$2,800$2,660 -
Malware Analysis and Detection Engineering: A Comprehensive Approach to Detect and Analyze Modern Malware (Paperback)$3,130$3,067
資訊安全書展|中文簡體2書75折 英文2書85折 詳見活動內容 »
-
VIP 95折
Quantum Ready: The Enterprise Guide to Post-Quantum Cryptographic Readiness (Paperback)$2,550$2,422 -
VIP 95折
Becoming Quantum Safe: Protect Your Business and Mitigate Risks with Post-Quantum Cryptography and Crypto-Agility$1,900$1,805 -
85折
$1,785Certificate of Cloud Security Knowledge (Ccsk V5) Study Guide: In-Depth Guidance and Practice -
VIP 95折
Data-Driven Cybersecurity: Reducing Risk with Proven Metrics$2,160$2,052 -
VIP 95折
Palo Alto Networks from Policy to Code: Automate PAN-OS security policies with Python precision (Paperback)$1,690$1,605 -
85折
$1,573Microsoft Security Copilot: Master strategies for AI-driven cyber defense -
VIP 90折
Intelligent Continuous Security: Ai-Enabled Transformation for Seamless Protection (Paperback)$2,565$2,430 -
Privileged Access Management: Strategies for Zero Trust in the Enterprise$1,860$1,822 -
VIP 90折
Identity Security for Software Development: Best Practices That Every Developer Must Know (Paperback)$1,995$1,890 -
VIP 95折
Mastering Palo Alto Networks : The complete journey to firewall mastery from setup to advanced security, 3/e (Paperback)$1,850$1,757 -
VIP 95折
電腦安全:原理與實踐(原書第5版)*此書為英文原文書*$774$735 -
CISSP Study Guide 2025-2026: All in One CISSP Exam Prep for the ICS2 Certified Information Systems Security Professional Certification. With Exam Review Material & 774 CISSP Practice Test Questions (Paperback)$1,800$1,764 -
VIP 95折
IAPP CIPP / US Certified Information Privacy Professional Study Guide (Sybex Study Guide)$2,080$1,976 -
85折
$1,530Microsoft Cybersecurity Architect Exam Ref SC-100 - Second Edition: Ace the SC-100 exam and develop cutting-edge cybersecurity strategies -
Cryptography (Paperback)$850$833 -
VIP 95折
Serious Cryptography, 2nd Edition: A Practical Introduction to Modern Encryption$2,100$1,995 -
VIP 95折
Open-Source Security Operations Center (Soc): A Complete Guide to Establishing, Managing, and Maintaining a Modern Soc (美國原版)$3,300$3,135 -
85折
$3,383A Comprehensive Guide to the Nist Cybersecurity Framework 2.0: Strategies, Implementation, and Best Practice -
85折
$1,785Security Architecture for Hybrid Cloud: A Practical Method for Designing Security Using Zero Trust Principles (Paperback) -
VIP 95折
Cryptography Algorithms - Second Edition: Get to grips with new algorithms in blockchain, zero-knowledge, homomorphic encryption, and quantum$1,840$1,748 -
VIP 90折
Hands-On Differential Privacy: Introduction to the Theory and Practice Using Opendp$2,517$2,385 -
85折
$2,678Developing Cybersecurity Programs and Policies in an Ai-Driven World -
VIP 95折
Implementing Palo Alto Networks Prisma(R) Access: Learn real-world network protection (Paperback)$1,990$1,890 -
VIP 95折
Understanding Cryptography: From Established Symmetric and Asymmetric Ciphers to Post-Quantum Algorithms (Hardcover) 2/e$2,800$2,660 -
85折
$1,530Microsoft 365 Security and Compliance for Administrators: A definitive guide to planning, implementing, and maintaining Microsoft 365 security posture
商品描述
Go deep into Windows security tools to implement more robust protocols and processes
Windows Security Monitoring goes beyond Windows admin and security certification guides to provide in-depth information for security professionals. Written by a Microsoft security program manager, DEFCON organizer and CISSP, this book digs deep into the underused tools that help you keep Windows systems secure. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful native tools, while scenario-based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event detection to incident response procedures and best practices, this book provides detailed information on all of the security tools your Windows system has to offer.
Windows includes many native tools that can help IT professionals and security experts spot and remedy suspicious activities on servers, networks, and end-user computers. If you're like many Windows pros, you're probably not taking full advantage of these features. This book takes you deep into Windows' underutilized built-in security tools to help you beef up your monitoring, detection, and response processes.
- Detect anomalous events and implement centralized alerting infrastructure
- Dig into the native Windows tools that enable robust security measures
- Understand the details of Powershell, Applocker, LogParser, and other tools
- Adopt effective incident response processes for various common scenarios
Fully applicable to a range of Windows versions—back to Windows Vista and Windows Server 2008—this book is designed for real-world implementation. As the threats to your data grow more numerous by the day, it becomes ever more critical to use every security tool at your disposal. Windows Security Monitoring offers complete, expert guidance toward robust security with specialist-level use of powerful Windows tools.
商品描述(中文翻譯)
深入了解 Windows 安全工具以實施更強健的協議和流程
《Windows 安全監控》超越了 Windows 管理和安全認證指南,為安全專業人員提供深入的信息。這本書由一位微軟安全計劃經理、DEFCON 組織者和 CISSP 撰寫,深入探討了那些幫助您保持 Windows 系統安全的未充分利用的工具。專家的指導讓您迅速掌握 Windows 審計、日誌記錄和事件系統,幫助您充分利用這些強大的原生工具的全部功能,而基於場景的教學則清楚地說明了這些事件在現實世界中的發展情況。從安全監控和事件檢測到事件響應程序和最佳實踐,本書提供了有關您 Windows 系統所提供的所有安全工具的詳細信息。
Windows 包含許多原生工具,可以幫助 IT 專業人員和安全專家發現和修正伺服器、網絡和終端用戶計算機上的可疑活動。如果您像許多 Windows 專業人士一樣,您可能並未充分利用這些功能。本書深入探討 Windows 的未充分利用的內建安全工具,幫助您加強監控、檢測和響應流程。
- 檢測異常事件並實施集中警報基礎設施
- 深入了解能夠實施強健安全措施的原生 Windows 工具
- 理解 Powershell、Applocker、LogParser 和其他工具的細節
- 採用有效的事件響應流程以應對各種常見場景
本書完全適用於多個 Windows 版本——從 Windows Vista 和 Windows Server 2008 開始——旨在實現現實世界的應用。隨著對您數據的威脅日益增多,使用您手中可用的每一個安全工具變得越來越重要。《Windows 安全監控》提供了完整的專家指導,幫助您利用強大的 Windows 工具實現強健的安全性。
