Richard Bejtlich is Chief Security Officer at Mandiant and was previously Director of Incident Response for General Electric, where he built and led the 40-member GE Computer Incident Response Team (GE-CIRT). He is a graduate of Harvard University and the United States Air Force Academy. Bejtlich’s previous works include The Tao of Network Security Monitoring, Extrusion Detection, and Real Digital Forensics (all from Addison-Wesley). He writes on his blog (taosecurity.blogspot.com) and on Twitter as @taosecurity
发表于2024-11-26
The Practice of Network Security Monitoring 2024 pdf epub mobi 电子书
图书标签: hack
Network Security Monitoring (NSM) is the the collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. The Practice of Network Security Monitoring teaches IT and security staff how to leverage powerful NSM tools and concepts to identify threats quickly and effectively. Author Richard Bejtlich is a recognized expert in NSM and shares his 15 years of incident handling experience with the reader. In addition to teaching you how to use key monitoring tools, Bejtlich demonstrates a holistic way of thinking about detecting, responding to, and containing intruders. The Practice of Network Security Monitoring assumes no prior experience with network security monitoring, and covers designing, deploying, building, and running an NSM operation. The book focuses on open source software and vendor-neutral tools, avoiding costly and inflexible solutions.
security onion 工具书,但网络安全监控分析思路讲的比较简略,分别讲了两个实例,服务端攻击和客户端攻击,将工具集的使用串起来。
评分security onion 工具书,但网络安全监控分析思路讲的比较简略,分别讲了两个实例,服务端攻击和客户端攻击,将工具集的使用串起来。
评分security onion 工具书,但网络安全监控分析思路讲的比较简略,分别讲了两个实例,服务端攻击和客户端攻击,将工具集的使用串起来。
评分security onion 工具书,但网络安全监控分析思路讲的比较简略,分别讲了两个实例,服务端攻击和客户端攻击,将工具集的使用串起来。
评分security onion 工具书,但网络安全监控分析思路讲的比较简略,分别讲了两个实例,服务端攻击和客户端攻击,将工具集的使用串起来。
The Practice of Network Security Monitoring 2024 pdf epub mobi 电子书