The practice of network security monitoring : : understanding incident detection and response / / by Richard Bejtlich.
Saved in:
: | |
---|---|
Place / Publishing House: | San Francisco : : No Starch Press,, 2013. |
Year of Publication: | 2013 |
Language: | English |
Online Access: | |
Physical Description: | 1 online resource (379 pages) :; illustrations |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Table of Contents:
- Foreword / by Todd Heberlein
- Preface
- Part I. Getting Started
- The Rationale
- Collecting Traffic
- Part II. Security Onion Deployment
- Standalone Deployment
- Distributed Deployment
- Housekeeping
- Part III. Tools
- Command Line Packet Analysis Tools
- Graphical Packet Analysis Tools
- Consoles
- Part III. NSM in Action
- Collection, Analysis, Escalation, and Resolution
- Server-Side Compromise
- Client-Side Compromise
- Extending SO
- Proxies and Checksums
- Conclusion
- Appendix A: Security Onion Scripts and Configuration / by Doug Burks.