Book Description

“Practical Intrusion Analysis provides a solid fundamental overview of the art and science of intrusion analysis.”
–Nate Miller, Cofounder, Stratum Security

The Only Definitive Guide to New State-of-the-Art Techniques in Intrusion Detection and Prevention

Recently, powerful innovations in intrusion detection and prevention have evolved in response to emerging threats and changing business environments. However, security practitioners have found little reliable, usable information about these new IDS/IPS technologies. In Practical Intrusion Analysis, one of the field’s leading experts brings together these innovations for the first time and demonstrates how they can be used to analyze attacks, mitigate damage, and track attackers.

Ryan Trost reviews the fundamental techniques and business drivers of intrusion detection and prevention by analyzing today’s new vulnerabilities and attack vectors. Next, he presents complete explanations of powerful new IDS/IPS methodologies based on Network Behavioral Analysis (NBA), data visualization, geospatial analysis, and more.

Writing for security practitioners and managers at all experience levels, Trost introduces new solutions for virtually every environment. Coverage includes

• Assessing the strengths and limitations of mainstream monitoring tools and IDS technologies
• Using Attack Graphs to map paths of network vulnerability and becoming more proactive about preventing intrusions Download Now »

Book Description

Since the 1990s Grid Computing has emerged as a paradigm for accessing and managing distributed, heterogeneous and geographically spread resources, promising that we will be able to access computer power as easily as we can access the electric power grid. Later on, Cloud Computing brought the promise of providing easy and inexpensive access to remote hardware and storage resources. Exploiting pay-per-use models and virtualization for resource provisioning, cloud computing has been rapidly accepted and used by researchers, scientists and industries.

In this volume, contributions from internationally recognized experts describe the latest findings on challenging topics related to grid and cloud database management. By exploring current and future developments, they provide a thorough understanding of the principles and techniques involved in these fields. The presented topics are well balanced and complementary, and they range from well-known research projects and real case studies to standards and specifications, and non-functional aspects such as security, performance and scalability. Following an initial introduction by the editors, the contributions are organized into four sections: Open Standards and Specifications, Research Efforts in Grid Database Management, Cloud Data Management, and Scientific Case Studies.

With this presentation, the book serves mostly researchers and graduate students, both as an introduction to and as a technical reference for grid and cloud database management. The detailed descriptions of research prototypes dealing with spatiotemporal or genomic data will also be useful for application engineers in these fields. Download Now »

Book Description

Protection measures for the next Internet Protocol

As the world’s networks migrate to the IPv6 protocol, networking professionals need a clearer understanding of the security risks, threats, and challenges this transition presents. In IPv6 Security, two of the world’s leading Internet security practitioners review each potential security issue introduced by IPv6 networking and present today’s best solutions.

IPv6 Security offers guidance for avoiding security problems prior to widespread IPv6 deployment. The book covers every component of today’s networks, identifying specific security deficiencies that occur within IPv6 environments and demonstrating how to combat them.

The authors describe best practices for identifying and resolving weaknesses as you maintain a dual stack network. Then they describe the security mechanisms you need to implement as you migrate to an IPv6-only network. The authors survey the techniques hackers might use to try to breach your network, such as IPv6 network reconnaissance, address spoofing, traffic interception, denial of service, and tunnel injection.

The authors also turn to Cisco® products and protection mechanisms. You learn how to use Cisco IOS® and ASA firewalls and ACLs to selectively filter IPv6 traffic. You also learn about securing hosts with Cisco Security Agent 6.0 and about securing a network with IOS routers and switches. Multiple examples are explained for Windows, Linux, FreeBSD, and Solaris hosts. The authors offer detailed examples that are consistent with today’s best practices and easy to adapt to virtually any IPv6 environment. Download Now »

Book Description

An essential, comprehensive, and practical guide to IPv6 concepts, service implementation, and interoperability in existing IPv4 environments

After completing Deploying IPv6 Networks, you will:

• Understand the current state of IPv6 technologies and services
• Understand the IPv6 features as they are applied in service deployments
• Be prepared with guidelines on how to ready your organization for a migration to IPv6
• Know how to design and implement an IPv6 production-level network using the book’s templates and examples
• Have the ability to configure and troubleshoot IPv6 networks
• Know where IPv6 developments are moving in the future

Large IPv6 production deployments worldwide are proof that the transition to the next generation of the IP protocol is no longer merely a prediction—IPv6 is now touching all aspects of IP networking and communications. Therefore, understanding the technology and being able to plan, design, and deploy IPv6 services are necessary skills for networking professionals.

Deploying IPv6 Networks is an essential guide to IPv6 concepts, service implementation, and interoperability in existing IPv4 environments. You’ll learn about IPv6 as a mature technology ready for deployment. Deploying IPv6 Networks goes beyond addressing the basics of IPv6 yet remains accessible to readers unfamiliar with the protocol. With this book in hand, you will learn how to plan, design, deploy, and manage IPv6 services. Download Now »

Book Description

This complete new guide to auditing network security is an indispensable resource for security, network, and IT professionals, and for the consultants and technology partners who serve them.

Cisco network security expert Chris Jackson begins with a thorough overview of the auditing process, including coverage of the latest regulations, compliance issues, and industry best practices. The author then demonstrates how to segment security architectures into domains and measure security effectiveness through a comprehensive systems approach.

Network Security Auditing thoroughly covers the use of both commercial and open source tools to assist in auditing and validating security policy assumptions. The book also introduces leading IT governance frameworks such as COBIT, ITIL, and ISO 17799/27001, explaining their values, usages, and effective integrations with Cisco security products.

This book arms you with detailed auditing checklists for each domain, realistic design insights for meeting auditing requirements, and practical guidance for using complementary solutions to improve any company’s security posture.

• Master the five pillars of security auditing: assessment, prevention, detection, reaction, and recovery.
• Recognize the foundational roles of security policies, procedures, and standards.
• Understand current laws related to hacking, cracking, fraud, intellectual property, spam, and reporting. Download Now »

Book Description

The practical guide to simulating, detecting, and responding to network attacks

• Create step-by-step testing plans
• Learn to perform social engineering and host reconnaissance
• Evaluate session hijacking methods
• Exploit web server vulnerabilities
• Detect attempts to breach database security
• Use password crackers to obtain access information
• Circumvent Intrusion Prevention Systems (IPS) and firewall protections and disrupt the service of routers and switches
• Scan and penetrate wireless networks
• Understand the inner workings of Trojan Horses, viruses, and other backdoor applications
• Test UNIX, Microsoft, and Novell servers for vulnerabilities
• Learn the root cause of buffer overflows and how to prevent them
• Perform and prevent Denial of Service attacks

Penetration testing is a growing field but there has yet to be a definitive resource that instructs ethical hackers on how to perform a penetration test with the ethics and responsibilities of testing in mind. Penetration Testing and Network Defense offers detailed steps on how to emulate an outside attacker in order to assess the security of a network.

Unlike other books on hacking, this book is specifically geared towards penetration testing. It includes important information about liability issues and ethics as well as procedures and documentation. Using popular open-source and commercial applications Download Now »