LEADER 01721oam 2200433zu 450 001 996211389403316 005 20210807003606.0 035 $a(CKB)111026746747636 035 $a(SSID)ssj0000558878 035 $a(PQKBManifestationID)12236932 035 $a(PQKBTitleCode)TC0000558878 035 $a(PQKBWorkID)10566060 035 $a(PQKB)10721961 035 $a(EXLCZ)99111026746747636 100 $a20160829d1998 uy 101 0 $aeng 181 $ctxt 182 $cc 183 $acr 200 00$aString Processing and Information Retrieval: A South American Symposium, Santa Cruz de la Sierra, Bolivia, September 9-11, 1998 210 31$a[Place of publication not identified]$cIEEE Computer Society Press$d1998 300 $aBibliographic Level Mode of Issuance: Monograph 311 $a0-8186-8664-2 606 $aText processing (Computer science)$xCongresses 606 $aInformation storage and retrieval systems$xCongresses 606 $aEngineering & Applied Sciences$2HILCC 606 $aComputer Science$2HILCC 615 0$aText processing (Computer science)$xCongresses 615 0$aInformation storage and retrieval systems$xCongresses 615 7$aEngineering & Applied Sciences 615 7$aComputer Science 676 $a005 712 02$aRed Iberoamericana de Tecnologia del Software 712 12$aSouth American Symposium on String Processing and Information Retrieval$f(1998 :$eSanta Cruz de la Sierra, Bolivia) 801 0$bPQKB 906 $aPROCEEDING 912 $a996211389403316 996 $aString Processing and Information Retrieval: A South American Symposium, Santa Cruz de la Sierra, Bolivia, September 9-11, 1998$92389609 997 $aUNISA LEADER 02651nam 2200433 450 001 9910555168603321 005 20200304095930.0 010 $a1-119-56031-4 010 $a1-119-56030-6 010 $a1-119-56028-4 035 $a(CKB)4100000010103141 035 $a(MiAaPQ)EBC6017672 035 $a(CaSebORM)9781119560265 035 $a(PPN)272715190 035 $a(EXLCZ)994100000010103141 100 $a20200304d2020 uy 0 101 0 $aeng 135 $aurcnu|||||||| 181 $ctxt$2rdacontent 182 $cc$2rdamedia 183 $acr$2rdacarrier 200 10$aApplied incident response /$fSteve Anson 205 $a1st edition 210 1$aIndianapolis, Indiana :$cWiley,$d[2020] 210 4$dİ2020 215 $a1 online resource (464 pages) 311 $a1-119-56026-8 330 $aIncident response is critical for the active defense of any network, and incident responders need up-to-date, immediately applicable techniques with which to engage the adversary. Applied Incident Response details effective ways to respond to advanced attacks against local and remote network resources, providing proven response techniques and a framework through which to apply them.  As a starting point for new incident handlers, or as a technical reference for hardened IR veterans, this book details the latest techniques for responding to threats against your network, including: Preparing your environment for effective incident response Leveraging MITRE ATT&CK and threat intelligence for active network defense Local and remote triage of systems using PowerShell, WMIC, and open-source tools Acquiring RAM and disk images locally and remotely Analyzing RAM with Volatility and Rekall Deep-dive forensic analysis of system drives using open-source or commercial tools Leveraging Security Onion and Elastic Stack for network security monitoring Techniques for log analysis and aggregating high-value logs Static and dynamic analysis of malware with YARA rules, FLARE VM, and Cuckoo Sandbox Detecting and responding to lateral movement techniques, including pass-the-hash, pass-the-ticket, Kerberoasting, malicious use of PowerShell, and many more Effective threat hunting techniques Adversary emulation with Atomic Red Team Improving preventive and detective controls 606 $aInformation technology$xManagement 615 0$aInformation technology$xManagement. 676 $a658.4038 700 $aAnson$b Steve$01163078 801 0$bMiAaPQ 801 1$bMiAaPQ 801 2$bMiAaPQ 906 $aBOOK 912 $a9910555168603321 996 $aApplied incident response$92817088 997 $aUNINA LEADER 01353oam 2200445zu 450 001 9911020112603321 005 20210807004644.0 010 $a1-118-66524-4 035 $a(CKB)3450000000004484 035 $a(SSID)ssj0000815371 035 $a(PQKBManifestationID)11428304 035 $a(PQKBTitleCode)TC0000815371 035 $a(PQKBWorkID)10806529 035 $a(PQKB)11342039 035 $a(NjHacI)993450000000004484 035 $a(PPN)189286261 035 $a(EXLCZ)993450000000004484 100 $a20160829d1986 uy 101 0 $aeng 135 $aur||||||||||| 181 $ctxt 182 $cc 183 $acr 200 00$aHistory of Geophysics. Vol. 2 210 31$a[Place of publication not identified]$cAmerican Geophysical Union$d1986 215 $a1 online resource (vi, 191 pages) $cillustrations 225 1 $aHistory of geophysics ;$vVolume 2 300 $aBibliographic Level Mode of Issuance: Monograph 311 $a0-87590-276-6 320 $aIncludes bibliographical references. 410 0$aHistory of geophysics ;$vVolume 2. 606 $aGeophysics in archaeology 615 0$aGeophysics in archaeology. 676 $a930.1 702 $aGillmor$b C. Stewart 801 0$bPQKB 906 $aBOOK 912 $a9911020112603321 996 $aHistory of Geophysics. Vol. 2$92173552 997 $aUNINA