Cybersecurity – Attack and Defense Strategies
eBook - ePub

Cybersecurity – Attack and Defense Strategies

Counter modern threats and employ state-of-the-art tools and techniques to protect your organization against cybercriminals, 2nd Edition

Yuri Diogenes, Dr. Erdal Ozkaya

Partager le livre
  1. 634 pages
  2. English
  3. ePUB (adapté aux mobiles)
  4. Disponible sur iOS et Android
eBook - ePub

Cybersecurity – Attack and Defense Strategies

Counter modern threats and employ state-of-the-art tools and techniques to protect your organization against cybercriminals, 2nd Edition

Yuri Diogenes, Dr. Erdal Ozkaya

DĂ©tails du livre
Aperçu du livre
Table des matiĂšres
Citations

À propos de ce livre

Updated and revised edition of the bestselling guide to developing defense strategies against the latest threats to cybersecurity

Key Features

  • Covers the latest security threats and defense strategies for 2020
  • Introduces techniques and skillsets required to conduct threat hunting and deal with a system breach
  • Provides new information on Cloud Security Posture Management, Microsoft Azure Threat Protection, Zero Trust Network strategies, Nation State attacks, the use of Azure Sentinel as a cloud-based SIEM for logging and investigation, and much more

Book Description

Cybersecurity – Attack and Defense Strategies, Second Edition is a completely revised new edition of the bestselling book, covering the very latest security threats and defense mechanisms including a detailed overview of Cloud Security Posture Management (CSPM) and an assessment of the current threat landscape, with additional focus on new IoT threats and cryptomining.

Cybersecurity starts with the basics that organizations need to know to maintain a secure posture against outside threat and design a robust cybersecurity program. It takes you into the mindset of a Threat Actor to help you better understand the motivation and the steps of performing an actual attack – the Cybersecurity kill chain. You will gain hands-on experience in implementing cybersecurity using new techniques in reconnaissance and chasing a user's identity that will enable you to discover how a system is compromised, and identify and then exploit the vulnerabilities in your own system.

This book also focuses on defense strategies to enhance the security of a system. You will also discover in-depth tools, including Azure Sentinel, to ensure there are security controls in each network layer, and how to carry out the recovery process of a compromised system.

What you will learn

  • The importance of having a solid foundation for your security posture
  • Use cyber security kill chain to understand the attack strategy
  • Boost your organization's cyber resilience by improving your security policies, hardening your network, implementing active sensors, and leveraging threat intelligence
  • Utilize the latest defense tools, including Azure Sentinel and Zero Trust Network strategy
  • Identify different types of cyberattacks, such as SQL injection, malware and social engineering threats such as phishing emails
  • Perform an incident investigation using Azure Security Center and Azure Sentinel
  • Get an in-depth understanding of the disaster recovery process
  • Understand how to consistently monitor security and implement a vulnerability management strategy for on-premises and hybrid cloud
  • Learn how to perform log analysis using the cloud to identify suspicious activities, including logs from Amazon Web Services and Azure

Who this book is for

For the IT professional venturing into the IT security domain, IT pentesters, security consultants, or those looking to perform ethical hacking. Prior knowledge of penetration testing is beneficial.

Foire aux questions

Comment puis-je résilier mon abonnement ?
Il vous suffit de vous rendre dans la section compte dans paramĂštres et de cliquer sur « RĂ©silier l’abonnement ». C’est aussi simple que cela ! Une fois que vous aurez rĂ©siliĂ© votre abonnement, il restera actif pour le reste de la pĂ©riode pour laquelle vous avez payĂ©. DĂ©couvrez-en plus ici.
Puis-je / comment puis-je télécharger des livres ?
Pour le moment, tous nos livres en format ePub adaptĂ©s aux mobiles peuvent ĂȘtre tĂ©lĂ©chargĂ©s via l’application. La plupart de nos PDF sont Ă©galement disponibles en tĂ©lĂ©chargement et les autres seront tĂ©lĂ©chargeables trĂšs prochainement. DĂ©couvrez-en plus ici.
Quelle est la différence entre les formules tarifaires ?
Les deux abonnements vous donnent un accĂšs complet Ă  la bibliothĂšque et Ă  toutes les fonctionnalitĂ©s de Perlego. Les seules diffĂ©rences sont les tarifs ainsi que la pĂ©riode d’abonnement : avec l’abonnement annuel, vous Ă©conomiserez environ 30 % par rapport Ă  12 mois d’abonnement mensuel.
Qu’est-ce que Perlego ?
Nous sommes un service d’abonnement Ă  des ouvrages universitaires en ligne, oĂč vous pouvez accĂ©der Ă  toute une bibliothĂšque pour un prix infĂ©rieur Ă  celui d’un seul livre par mois. Avec plus d’un million de livres sur plus de 1 000 sujets, nous avons ce qu’il vous faut ! DĂ©couvrez-en plus ici.
Prenez-vous en charge la synthÚse vocale ?
Recherchez le symbole Écouter sur votre prochain livre pour voir si vous pouvez l’écouter. L’outil Écouter lit le texte Ă  haute voix pour vous, en surlignant le passage qui est en cours de lecture. Vous pouvez le mettre sur pause, l’accĂ©lĂ©rer ou le ralentir. DĂ©couvrez-en plus ici.
Est-ce que Cybersecurity – Attack and Defense Strategies est un PDF/ePUB en ligne ?
Oui, vous pouvez accĂ©der Ă  Cybersecurity – Attack and Defense Strategies par Yuri Diogenes, Dr. Erdal Ozkaya en format PDF et/ou ePUB ainsi qu’à d’autres livres populaires dans Informatique et CybersĂ©curitĂ©. Nous disposons de plus d’un million d’ouvrages Ă  dĂ©couvrir dans notre catalogue.

Informations

Éditeur
Packt Publishing
Année
2019
ISBN
9781838822217
Édition
2
Sujet
Informatique
Sous-sujet
Cybersécurité
Symbols
0xsp Mongoose v1.7
about 347
download link 347, 349
tasks 347, 348
used, for launching Privilege Escalation attack 349, 350, 352, 356
used, for launching Privilege Escalation attack 351, 354, 355
Azure Sentinel
AWS logs, accessing from 586, 587
/etc/passwd file
using 334
A
Abel 131
accessibility features
exploiting 313
access token
manipulating 311, 312
Active Directory (AD)
about 277
Acunetix
about 556, 557
used, for performing online vulnerability scan 557, 558, 559, 560, 561, 562, 563, 564, 565
admin shares
about 279
advanced persistent threats (APTs) 50
Advanced Threat Analytics (ATA) 435
Advanced Threat Protection (ATP) 442
Aircrack-ng
about 74, 75, 134
download link 125
Airgeddon 78, 79
Airgraph-ng
about 124, 125
alerts
avoiding 254, 306, 307
AlienVault USM Anywhere
reference link 453
alternate data streams (ADS) 255
alternative sites, recovery strategies
cold sites 508
hot sites 508
mirrored sites 508
mobile sites 508
warm sites 508
Amazon Web Services (AWS) 584
Ammyy Admi 274
Androguard
about 213
download link 213
Android
rooting 332
Android Intent Hijacking 247
anomaly-based detection 433
apache-scalp tool
download link 584
Apache servers
hacking 149, 150
Apple OS
application whitelisting 385
AppleScript 276
application deployment 274
applications (apps)
about 6, 7
company-owned versus personal apps 6
data 8
security apps 6
security challenge 6
application shimming 314, 315, 316, 317, 318
application whitelisting
reference link 384
AppLocker
documentation link 385
ArcSight Enterprise Security Manager (ESM) 537
ARGOS 414
ARP spoofing 275, 276
aspects, for aggregating resources
business objectives 405
level of sensitivity 405
location 405
security zones 405
assault
about 58, 59
asset inventory tools
about 533
Foundstone's Enterprise 535
LANDesk Management Suite 534
peregrine tools 533
StillSecure 534
Automated Indicator Sharing 457
AWS logs
about 584, 585, 586
accessing, from Azure Sentinel 586, 587
Azure Active Directory (Azure AD) 416
Azure Activity Logs
about 587, 588
accessing, from Azure Sentinel 588, 589, ...

Table des matiĂšres