Books

"Topics covered: Overview of computer crime investigative response, including extensive descriptions of hacking techniques. Frequent examples are used to demonstrate how to extract evidence from a violated computer system. Appendices include sample incident-response forms."

Hits: 76
Rate it
Comment on it

"Covers not just the glamorous aspects such as the intrusion act itself, but all of the pitfalls, contracts, clauses, and other gotchas that can occur. Introduces penetration testing and its vital role in an overall network security plan. Softcover. CD-ROM included."

Hits: 67
Rate it
Comment on it

"The ultimate guide to this rapidly growing, cutting-edge technology. Starting with a basic examination of honeypots and the different roles they can play, the book moves on to in-depth explorations of six specific kinds of real-world honeypots: BackOfficer Friendly; Specter; Honeyd; Homemade honeypots; ManTrap; Honeynets."

Hits: 67
Rate it
Comment on it

"Topics covered: Monitoring computer systems for evidence of malicious activity, and reacting to such activity when it's detected. With coverage of Windows and Unix systems as well as non-platform-specific resources like Web services and routers, the book covers the fundamentals of incident response, processes for gathering evidence of an attack, and tools for making forensic work easier. ... This is one of the first books available that explains what to do after you've been hacked. Written by FBI insiders, this book reveals the computer forensics process and offers authoritative solutions designed to counteract and conquer hacker attacks."

Hits: 40
Rate it
Comment on it

Consider this book a sound technical introduction to deploying intrusion-detection systems (IDS) primarily and intrusion-prevention systems secondarily. While this book, authored by Carl Endorf, Eugene Schultz and Jim Mellander, delves into particulars about a few IDS commercial products and the open-source IDS Snort, it generally sticks to explaining fundamentals, including forensics and incident response.

Hits: 87
Rate it
Comment on it

Ellen Messmer writes: The book's author, Rafeeq Ur Rehman, founding director of Argus Network Security Services, discusses how to set up an IDS sensor using Snort, MySql database, Apache, with tools that include ACID, PHP, GD Library and PHPLOT.

Hits: 106
Rate it
Comment on it

"Intrusion Signatures and Analysis opens with an introduction into the format of some of the more common sensors and then begins a tutorial into the unique format of the signatures and analyses used in the book. After a challenging four-chapter review, the reader finds page after page of signatures, in order by categories. Then the content digs right into reaction and responses covering how sometimes what you see isn't always what is happening. The book also covers how analysts can spend time chasing after false positives. Also included is a section on how attacks have shut down the networks and web sites of Yahoo, and E-bay and what those attacks looked like. Readers will also find review questions with answers throughout the book, to be sure they comprehend the traces and material that has been covered."

Hits: 52
Rating: 5.00
Rate it
Comment on it

"In this greatly revised and expanded follow-up to their groundbreaking book, Know Your Enemy, members of The Honeynet Project (including Lance Spitzner, Brian Carrier, Anton Chuvakin, Eric Cole, Yannis Corovesis, Max Klinger, and Rob Lee) provide an unrivaled 'intelligence report' on those who use the Internet for destructive purposes. They also provide an in-depth guide to honeynets--high-interaction honeypots designed to capture extensive information on exactly how your enemies operate so you can protect your systems from them."

Hits: 15
Rate it
Comment on it

By members of the Snort development team. Includes a CD with a copy of SNORT (and related applications).

Hits: 63
Rate it
Comment on it