Instant OSSEC Host-based Intrusion Detection System - Helion
Tytuł oryginału: Instant OSSEC Host-based Intrusion Detection System
ISBN: 9781782167655
stron: 62, Format: ebook
Data wydania: 2013-07-26
Księgarnia: Helion
Cena książki: 80,91 zł (poprzednio: 89,90 zł)
Oszczędzasz: 10% (-8,99 zł)
Security software is often expensive, restricting, burdensome, and noisy. OSSEC-HIDS was designed to avoid getting in your way and to allow you to take control of and extract real value from industry security requirements. OSSEC-HIDS is a comprehensive, robust solution to many common security problems faced in organizations of all sizes.
"Instant OSSEC-HIDS" is a practical guide to take you from beginner to power user through recipes designed based on real- world experiences. Recipes are designed to provide instant impact while containing enough detail to allow the reader to further explore the possibilities. Using real world examples, this book will take you from installing a simple, local OSSEC-HIDS service to commanding a network of servers running OSSEC-HIDS with customized checks, alerts, and automatic responses.
You will learn how to maximise the accuracy, effectiveness, and performance of OSSEC-HIDS' analyser, file integrity monitor, and malware detection module. You will flip the table on security software and put OSSEC-HIDS to work validating its own alerts before escalating them. You will also learn how to write your own rules, decoders, and active responses. You will rest easy knowing your servers can protect themselves from most attacks while being intelligent enough to notify you when they need help!
You will learn how to use OSSEC-HIDS to save time, meet security requirements, provide insight into your network, and protect your assets.
Osoby które kupowały "Instant OSSEC Host-based Intrusion Detection System", wybierały także:
- Windows Media Center. Domowe centrum rozrywki 66,67 zł, (8,00 zł -88%)
- Ruby on Rails. Ćwiczenia 18,75 zł, (3,00 zł -84%)
- Przywództwo w świecie VUCA. Jak być skutecznym liderem w niepewnym środowisku 58,64 zł, (12,90 zł -78%)
- Scrum. O zwinnym zarządzaniu projektami. Wydanie II rozszerzone 58,64 zł, (12,90 zł -78%)
- Od hierarchii do turkusu, czyli jak zarządzać w XXI wieku 58,64 zł, (12,90 zł -78%)
Spis treści
Instant OSSEC Host-based Intrusion Detection System. A hands-on guide exploring OSSEC HIDS for operational and security awareness eBook -- spis treści
- Instant OSSEC Host-based Intrusion Detection
- Instant OSSEC Host-based Intrusion Detection
- Credits
- About the Author
- About the Reviewers
- www.PacktPub.com
- Support files, eBooks, discount offers and more
- Why Subscribe?
- Free Access for Packt account holders
- Support files, eBooks, discount offers and more
- Preface
- What this book covers
- What you need for this book
- Official documentation
- The community
- Commercial support
- Who this book is for
- Conventions
- Reader feedback
- Customer support
- Downloading the example code
- Errata
- Piracy
- Questions
- 1. Instant OSSEC Host-based Intrusion Detection
- Installing OSSEC (Simple)
- Getting ready
- How to do it...
- How it works...
- Theres more
- Binary installations
- Starting OSSEC at boot
- Configuring an OSSEC server (Simple)
- Getting ready
- How to do it...
- How it works...
- Getting agents to communicate (Simple)
- Getting ready
- How to do it...
- How it works...
- There's more...
- Managing agent keys automatically
- Writing your own rules (Simple)
- Getting ready
- How to do it...
- How it works...
- There's more...
- Decoding event data
- Detecting SSH brute-force attacks (Intermediate)
- Getting ready
- How to do it...
- How it works...
- Configuring the alerts (Simple)
- Getting ready
- How to do it...
- How it works...
- There's more...
- What is rule 1002 and why is it spamming me?
- Playing nice with others
- File integrity monitoring (Simple)
- Getting ready
- How to do it...
- How it works...
- There's more...
- Monitoring the Windows registry
- Working with prelinking
- Monitoring command output (Intermediate)
- Getting ready
- How to do it...
- How it works...
- Detecting rootkits and anomalies (Simple)
- Getting ready
- How to do it...
- How it works...
- There's more...
- Auditing your systems
- Increasing paranoia
- Introducing active response (Intermediate)
- Getting ready
- How to do it...
- How it works...
- Verifying alerts with active response (Advanced)
- Getting ready
- How to do it...
- How it works...
- Installing OSSEC (Simple)