Richard Bejtlich is Chief Security Officer at Mandiant and was previously Director of Incident Response for General Electric, where he built and led the 40-member GE Computer Incident Response Team (GE-CIRT). He is a graduate of Harvard University and the United States Air Force Academy. Bejtlich’s previous works include The Tao of Network Security Monitoring, Extrusion Detection, and Real Digital Forensics (all from Addison-Wesley). He writes on his blog (taosecurity.blogspot.com) and on Twitter as @taosecurity
Network Security Monitoring (NSM) is the the collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. The Practice of Network Security Monitoring teaches IT and security staff how to leverage powerful NSM tools and concepts to identify threats quickly and effectively. Author Richard Bejtlich is a recognized expert in NSM and shares his 15 years of incident handling experience with the reader. In addition to teaching you how to use key monitoring tools, Bejtlich demonstrates a holistic way of thinking about detecting, responding to, and containing intruders. The Practice of Network Security Monitoring assumes no prior experience with network security monitoring, and covers designing, deploying, building, and running an NSM operation. The book focuses on open source software and vendor-neutral tools, avoiding costly and inflexible solutions.
發表於2024-12-24
The Practice of Network Security Monitoring 2024 pdf epub mobi 電子書 下載
圖書標籤: hack
security onion 工具書,但網絡安全監控分析思路講的比較簡略,分彆講瞭兩個實例,服務端攻擊和客戶端攻擊,將工具集的使用串起來。
評分security onion 工具書,但網絡安全監控分析思路講的比較簡略,分彆講瞭兩個實例,服務端攻擊和客戶端攻擊,將工具集的使用串起來。
評分security onion 工具書,但網絡安全監控分析思路講的比較簡略,分彆講瞭兩個實例,服務端攻擊和客戶端攻擊,將工具集的使用串起來。
評分security onion 工具書,但網絡安全監控分析思路講的比較簡略,分彆講瞭兩個實例,服務端攻擊和客戶端攻擊,將工具集的使用串起來。
評分security onion 工具書,但網絡安全監控分析思路講的比較簡略,分彆講瞭兩個實例,服務端攻擊和客戶端攻擊,將工具集的使用串起來。
The Practice of Network Security Monitoring 2024 pdf epub mobi 電子書 下載