Название: Practical Network Security Monitoring: Using Free Software Автор: Elizabeth S. Graham Издательство: BookBaby Год: 2020 Страниц: 332 Язык: английский Формат: pdf (true) Размер: 10.1 MB
Practical Network Security Monitoring is intended to guide beginner through intermediate users how to use free software to collect, monitor, and analyze network traffic to detect and identify potential threats. Network Security Monitoring is complex but with a few tools and basic knowledge of your network, you can detect, identify, and defend against cyber threats to your network.
This book provides practical exercises to learn how to use free software to identify threats to your network. The practical exercises provide step-by-step instructions allowing you to install, configure, and use the free tools. This book is not intended to be an all-inclusive guide to defending your network and assets, but is intended to provide you with the hands-on experience to analyze your network traffic and determine if traffic is malicious.
Security Onion is a network security monitoring tool that runs on the Linux operating system and contains tools to perform network capture, intrusion detection, and network traffic analysis tools. You will need 2 network interfaces to sniff network traffic; one interface will be used for the management interface; one interface will be used for sniffing. The management interface will have an IP address, while the sniffing interface will not.
There are several tools that can be used to perform PCAP Analysis. PCAP Analysis allows an analyst to perform packet inspection to determine network activity. Wireshark is one of the most commonly used tools to perform PCAP analysis and is open source. It is an extremely powerful tool and we will only scratch the surface of its capabilities...
About the Author: Elizabeth S. Graham has worked in Cyber Security for over 20 years. She has worked for multiple Department of Defense organizations as a Cyber Security Manager, Forensic Examiner, Cyber Security Analyst, and Malware Analyst.
Скачать Practical Network Security Monitoring: Using Free Software
|