Home > Store > Security > Network Security
Defend I.T.: Security by Example
- By Ajay Gupta, Scott Laliberte
- Published May 19, 2004 by Addison-Wesley Professional.
- Copyright 2004
- Dimensions: 7x9-1/4
- Pages: 384
- Edition: 1st
- Book
- ISBN-10: 0-321-19767-4
- ISBN-13: 978-0-321-19767-2
Register your product to gain access to bonus material or receive a coupon.
"Ajay and Scott take an interesting approach in filling Defend I.T. with case studies and using them to demonstrate important security principles. This approach works well and is particularly valuable in the security space, where companies and consultants are often hesitant to discuss true security incidents for potential embarrassment and confidentiality reasons. Defend I.T. is full of engaging stories and is a good read."
--Fyodor, author of the Nmap Security Scanner and Insecure.Org
"Defend I.T. answers reader demand for scenario-driven examples. Security professionals will be able to look at these case studies and relate them to their own experiences. That sets this book apart."
--Lance Hayden, Cisco Systems
"This is an exciting book! It's like reading several mysteries at once from different viewpoints, with the added benefit of learning forensic procedures along the way. Readers will benefit from the procedures, and the entertaining presentation is a real plus."
--Elizabeth Zinkann, Equilink Consulting
The battle between IT professionals and those who use the Internet for destructive purposes is raging--and there is no end in sight. Reports of computer crime and incidents from the CERT Coordination Center at Carnegie Mellon University more than double each year and are expected to rise. Meanwhile, viruses and worms continue to take down organizations for days.
Defend I.T.: Security by Example draws on detailed war stories to identify what was done right and what was done wrong in actual computer-security attacks, giving you the opportunity to benefit from real experiences. Approaches to securing systems and networks vary widely from industry to industry and organization to organization. By examining a variety of real-life incidents companies are too embarrassed to publicly share, the authors explain what could have been done differently to avoid the losses incurred--whether creating a different process for incident response or having better security countermeasures in place to begin with.
Inside, you'll find in-depth case studies in a variety of categories:
- Basic Hacking: Blackhat bootcamp, including mapping a network, exploiting vulnerable architecture, and launching denial-of-service attacks
- Current Methods: The latest in malicious deeds, including attacks on wireless networks, viruses and worms, and compromised Web servers
- Additional Items on the Plate: Often overlooked security measures such as developing a security policy, intrusion-detection systems, disaster recovery, and government regulations
- Old School: Classic means of compromising networks--war dialing and social engineering
- Forensics: How to investigate industrial espionage, financial fraud, and network intrusion
Aimed at both information-security professionals and network administrators, Defend I.T. shows you how to tap the best computer-security practices and industry standards to deter attacks and better defend networks.
Related Articles
|
7 of 7 people found the following review helpful
Fun and enlightening security read, By
This review is from: Defend I.T.: Security by Example (Paperback)
Defend IT book reviewI was not a major fan of the author's previous book "Hack I.T.', thus I was a bit skeptical about this one. However, this book delivers! It reminded me of "Hackers Challenge" 1 & 2 books (which I loved it), because the information in the book is structure around the realistic (or maybe even real) cases, illustrating various security aspects. The stories in the book cover a wide range of issues: from building a secure network from small business all the way to social engineering. Worm/virus infections, wireless security assessments, web applications, forensic investigation, security policy issues, DR and BCP, picking the right NIDS all find their place in the book. Especially, I loved the way they approached a usually boring subject of creating and implementing a security policy and DR planning. The policy case describes everything from 'why you need a policy' to security awareness and compliance verification. Executive fraud case was also lots of fun to... Read more
6 of 6 people found the following review helpful
Great addition to your IT security library !!!, By Ron Goodbin (New Jersey) - See all my reviews
This review is from: Defend I.T.: Security by Example (Paperback)
"Defend I.T.: Security by Example" is one of my first reads on IT security. I am currently a programmer, looking to get into the information security field.This book has successfully turned my interest in IT security into intrigue. Each chapter is a different real life case study, with techniques used and lessons learned. Coming from a technical background, I appreciated the technical depth that the authors delve into. From the get go in Chapter 1, the authors present a tutorial on the popular scanning tool called NMAP which is fascinating. The network diagrams throughout the book were very helpful in explaining to the reader the difficult concepts such as Distributed Denial-of-Service attack and Ingress and Egress filtering. "Defend I.T.: Security by Example" introduced me to many new concepts including IDS, INGRESS, EGRESS, DMZ, SSO, ZOMBIE,FIREWALL's, VPN's, PKI, and DOS attacks, just to name a few. Overall, this book is very informative and... Read more
6 of 6 people found the following review helpful
Learn Security By Example Using Case Studies, By
This review is from: Defend I.T.: Security by Example (Paperback)
The authors of Defend I.T.: Security By Example, teamed up previously to write Hack I.T.. The previous work was more along the lines of the hacking genre of books such as Hacking Exposed or Counter Hack, providing detailed explanations of various attacks to use in performing a penetration test of your network.Books like that are great for those with the knowledge and skills to make sense of them, but people who aren't as technical and don't necessarily work the front lines of network security such as managers and executives can still benefit from having an understanding of how such attacks can impact their company and a high-level understanding of how to defend against them. This book is not written for someone with zero technical knowledge. It does assume a certain level of understanding, but the case studies help to illustrate how the various attack techniques in the other type of books can be used and how you can protect your network. This book is... Read more |
Online Sample Chapter
The Role of Computer Forensics in Stopping Executive Fraud
Index
Download the Index
file related to this title.
Table of Contents
Preface.
About the Authors.
Introduction.
I. BASIC HACKING.
II. CURRENT METHODS.
III. ADDITIONAL ITEMS ON THE PLATE.
IV. OLD SCHOOL.
IV. COMPUTER FORENSICS.
Downloadable Sample Chapter
Download the Sample
Chapter related to this title.
Book
This product currently is not for sale.
Get access to thousands of books and training videos about technology, professional development and digital media from more than 40 leading publishers, including Addison-Wesley, Prentice Hall, Cisco Press, IBM Press, O'Reilly Media, Wrox, Apress, and many more. If you continue your subscription after your 30-day trial, you can receive 30% off a monthly subscription to the Safari Library for up to 12 months. That's a total savings of $199.
