Vai al contenuto principale della pagina

The practice of network security monitoring : understanding incident detection and response / / by Richard Bejtlich



(Visualizza in formato marc)    (Visualizza in BIBFRAME)

Autore: Bejtlich Richard Visualizza persona
Titolo: The practice of network security monitoring : understanding incident detection and response / / by Richard Bejtlich Visualizza cluster
Pubblicazione: San Francisco : , : No Starch Press, , 2013
Edizione: 1st edition
Descrizione fisica: 1 online resource (380 p.)
Disciplina: 004.6
Soggetto topico: Computer networks - Security measures
Electronic countermeasures
Soggetto genere / forma: Electronic books.
Note generali: Description based upon print version of record.
Nota di bibliografia: Includes bibliographical references and index.
Nota di contenuto: Foreword / by Todd Heberlein -- Preface -- Part I. Getting Started -- The Rationale -- Collecting Traffic -- Part II. Security Onion Deployment -- Standalone Deployment -- Distributed Deployment -- Housekeeping -- Part III. Tools -- Command Line Packet Analysis Tools -- Graphical Packet Analysis Tools -- Consoles -- Part III. NSM in Action -- Collection, Analysis, Escalation, and Resolution -- Server-Side Compromise -- Client-Side Compromise -- Extending SO -- Proxies and Checksums -- Conclusion -- Appendix A: Security Onion Scripts and Configuration / by Doug Burks.
Sommario/riassunto: Network security is not simply about building impenetrable walls - determined attackers will eventually overcome traditional defenses. The most effective computer security strategies integrate network security monitoring (NSM): the collection and analysis of data to help you detect and respond to intrusions.In The Practice of Network Security Monitoring, Mandiant CSO Richard Bejtlich shows you how to use NSM to add a robust layer of protection around your networks - no prior experience required. To help you avoid costly and inflexible solutions, he teaches you how to deploy, build, and run an
Titolo autorizzato: The practice of network security monitoring  Visualizza cluster
ISBN: 1-59327-534-X
1-4571-8517-2
Formato: Materiale a stampa
Livello bibliografico Monografia
Lingua di pubblicazione: Inglese
Record Nr.: 9910463987003321
Lo trovi qui: Univ. Federico II
Opac: Controlla la disponibilità qui
Cisco networking academy program CCNA ... : first year companion guide / Cisco Systems
Data networks / Dimitri Bertsekas , Robert Gallager
Bertsekas, Dimitri P.
CCNA ICND2 : official exam certification guide / Wendell Odom
Odom, Wendell
Reti locali / Matthew G. Naugle
Naugle, Matthew G.
Computer networks / Andrew S. Tanenbaum
Tanenbaum, Andrew S.