The Practice of Network Security Monitoring: Understanding Incident Detection and Response (Paperback)
Richard Bejtlich
- 出版商: No Starch Press
- 出版日期: 2013-07-15
- 售價: $1,800
- 貴賓價: 9.5 折 $1,710
- 語言: 英文
- 頁數: 376
- 裝訂: Paperback
- ISBN: 1593275099
- ISBN-13: 9781593275099
-
相關分類:
資訊安全
-
相關翻譯:
實戰網路安全監控|入侵偵測與因應之道 (The Practice of Network Security Monitoring: Understanding Incident Detection and Response) (繁中版)
立即出貨 (庫存 < 3)
買這商品的人也買了...
-
$680$537 -
$2,400$2,280 -
$780$663 -
$980$774 -
$1,130$961 -
$400$380 -
$349$297 -
$420$332 -
$500$450 -
$550$429 -
$580$458 -
$940$700 -
$320$250 -
$680$578 -
$480$379 -
$480$408 -
$480$374 -
$480$432 -
$480$408 -
$945A Handbook for Analytical Writing: Keys to Strategic Thinking (Paperback)
-
$580$458 -
$380$342 -
$780$616 -
$490$417 -
$480$408
相關主題
商品描述
Network security is not simply about building impenetrable walls — determined attackers will eventually overcome traditional defenses. The most effective computer security strategies integrate network security monitoring (NSM): the collection and analysis of data to help you detect and respond to intrusions.
In The Practice of Network Security Monitoring, Mandiant CSO Richard Bejtlich shows you how to use NSM to add a robust layer of protection around your networks — no prior experience required. To help you avoid costly and inflexible solutions, he teaches you how to deploy, build, and run an NSM operation using open source software and vendor-neutral tools.
You'll learn how to:
- Determine where to deploy NSM platforms, and size them for the monitored networks
- Deploy stand-alone or distributed NSM installations
- Use command line and graphical packet analysis tools, and NSM consoles
- Interpret network evidence from server-side and client-side intrusions
- Integrate threat intelligence into NSM software to identify sophisticated adversaries
There's no foolproof way to keep attackers out of your network. But when they get in, you'll be prepared. The Practice of Network Security Monitoring will show you how to build a security net to detect, contain, and control them. Attacks are inevitable, but losing sensitive data shouldn't be.
商品描述(中文翻譯)
網絡安全不僅僅是建立堅不可摧的防禦牆 - 決心的攻擊者最終會克服傳統的防禦措施。最有效的電腦安全策略是整合網絡安全監控(NSM):收集和分析數據,以幫助您檢測和應對入侵。
在《網絡安全監控實踐》一書中,Mandiant CSO Richard Bejtlich向您展示如何使用NSM在您的網絡周圍添加強大的保護層 - 無需任何先前經驗。為了幫助您避免昂貴且不靈活的解決方案,他教您如何使用開源軟件和供應商中立的工具部署、構建和運行NSM操作。
您將學到如何:
- 確定在哪裡部署NSM平台,並根據被監控的網絡大小進行規模化
- 部署獨立或分佈式的NSM安裝
- 使用命令行和圖形化的封包分析工具和NSM控制台
- 解釋來自服務器端和客戶端入侵的網絡證據
- 將威脅情報整合到NSM軟件中,以識別複雜的對手
沒有絕對可靠的方法可以阻止攻擊者進入您的網絡。但是當他們進入時,您將做好準備。《網絡安全監控實踐》將向您展示如何構建一個安全網,以檢測、遏制和控制它們。攻擊是不可避免的,但不應該損失敏感數據。