Cover image for Cybersecurity : Managing Systems, Conducting Testing, and Investigating Intrusions.
Cybersecurity : Managing Systems, Conducting Testing, and Investigating Intrusions.
Title:
Cybersecurity : Managing Systems, Conducting Testing, and Investigating Intrusions.
Author:
Mowbray, Thomas J.
ISBN:
9781118697047
Personal Author:
Edition:
1st ed.
Physical Description:
1 online resource (362 pages)
Contents:
Cover -- About the Author -- Acknowledgments -- Contents -- Introduction -- Part I: Cyber Network -- Chapter 1: Executive Summary -- Why Start with Antipatterns? -- Security Architecture -- Antipattern: Signature-Based Malware Detection versus Polymorphic Threats -- Refactored Solution: Reputational-, Behavioral-, and Entropy-Based Malware Detection -- Antipattern: Document-Driven Certification and Accreditation -- Antipattern: Proliferating IA Standards with No Proven Benefits -- Antipattern: Policy-Driven Security Certifications Do Not Address the Threat -- Refactored Solution: Security Training Roadmap -- Summary -- Assignments -- Chapter 2: The Problems: Cyber Antipatterns -- Antipatterns Concept -- Forces in Cyber Antipatterns -- Cyber Antipattern Templates -- Cybersecurity Antipattern Catalog -- Summary -- Assignments -- Chapter 3: Enterprise Security Using the Zachman Framework -- What Is Architecture? Why Do We Need It? -- Enterprises Are Complex and Changing -- The Zachman Framework for Enterprise Architecture -- Primitive Models versus Composite Models -- How Does the Zachman Framework Help with Cybersecurity? -- Everyone Has Their Own Specifications -- The Goldmine Is in Row 2 -- Frameworks for Row 3 -- Architectural Problem Solving Patterns -- Summary -- Assignments -- Part II: Cyber Network Security Hands-On -- Chapter 4: Network Administration for Security Professionals -- Managing Administrator and Root Accounts -- Installing Hardware -- Re-Imaging Operating Systems -- Burning and Copying CDs and DVDs -- Installing System Protection / Anti-Malware -- Setting Up Networks -- Installing Applications and Archiving -- Customizing System Management Controls and Settings -- Managing Remote Login -- Managing User Administration -- Managing Services -- Mounting Disks -- Moving Data Between Systems on Networks.

Converting Text Files Between OSes -- Making Backup Disks -- Formatting Disks -- Configuring Firewalls -- Converting and Migrating VMs -- Additional Network Administration Knowledge -- Summary -- Assignments -- Chapter 5: Customizing BackTrack -- Creating and Running BackTrack Images -- Customizing BackTrack with VM -- Updating and Upgrading BackTrack and Pen Test Tools -- Adding Windows to BackTrack with VMware -- Licensing Challenges for Network Administrators -- Summary -- Assignments -- Chapter 6: Protocol Analysis and -- Networking Theory and Practice -- Frequently Encountered Network Protocols -- Network Programming: Bash -- Network Programming: Windows Command-Line Interface (CLI) -- Python Programming: Accelerated Network Scanning -- Summary -- Assignments -- Chapter 7: Reconnaissance, Vulnerability Assessment, and Cyber Testing -- Types of Cybersecurity Evaluations -- Understanding the Cybersecurity Testing Methodology -- Summary -- Assignments -- Chapter 8: Penetration Testing -- Forms of Cyber Attacks -- Network Penetration -- Commercial Pen Testing Tools -- Using Netcat to Create Connections and Move Data and Binaries -- Using Netcat to Create Relays and Pivots -- Using SQL Injection and Cross-Site Techniques to Perform Web Application and Database Attacks -- Collecting User Identities with Enumeration and Hash Grabbing -- Password Cracking -- Privilege Escalation -- Final Malicious Phases -- Summary -- Assignments -- Chapter 9: Cyber Network Defense Using Advanced Log Analysis -- Introduction to Cyber Network Defense -- General Methods and Tools for Cyber Investigations -- Continuous Cyber Investigation Strategy -- A Summary of the Cyber Investigation Process -- Network Monitoring -- Text Log Analysis -- Binary Log Analysis -- Reporting Cyber Investigations -- Elimination of Cyber Threats -- Intrusion Discovery on Windows -- Summary.

Assignments -- Part III: Cyber Network Application Domains -- Chapter 10: Cybersecurity for End Users, Social Media, and Virtual Worlds -- Doing an Ego Search -- Protecting Laptops, PCs, and Mobile Devices -- Staying Current with Anti-Malware and Software Updates -- Managing Passwords -- Guarding Against Drive-By Malware -- Staying Safe with E‑mail -- Securely Banking and Buying Online -- Understanding Scareware and Ransomware -- Is Your Machine p0wned? -- Being Careful with Social Media -- Staying Safe in Virtual Worlds -- Summary -- Assignments -- Chapter 11: Cybersecurity Essentials for Small Business -- Install Anti-Malware Protection -- Update Operating Systems -- Update Applications -- Change Default Passwords -- Educate Your End Users -- Small Enterprise System Administration -- Wireless Security Basics for Small Business -- Tips for Apple Macintosh Users -- Summary -- Assignments -- Chapter 12: Large Enterprise Cybersecurity: Data Centers and Clouds -- Critical Security Controls -- Cloud Security -- Summary -- Assignments -- Chapter 13: Healthcare Information Technology Security -- HIPAA -- Healthcare Risk Assessment -- Healthcare Records Management -- Healthcare IT and the Judicial Process -- Data Loss -- Managing Logs in Healthcare Organizations -- Authentication and Access Control -- Summary -- Assignments -- Chapter 14: Cyber Warfare: An Architecture for Deterrence -- Introduction to Cyber Deterrence -- Methodology and Assumptions -- Cyber Deterrence Challenges -- Legal and Treaty Assumptions -- Cyber Deterrence Strategy -- Reference Model -- Solution Architecture -- Architectural Prototypes -- Summary -- Assignments -- Glossary -- Bibliography -- Index.
Abstract:
A must-have, hands-on guide for working in the cybersecurity profession Cybersecurity involves preventative methods to protect information from attacks. It requires a thorough understanding of potential threats, such as viruses and other malicious code, as well as system vulnerability and security architecture. This essential book addresses cybersecurity strategies that include identity management, risk management, and incident management, and also serves as a detailed guide for anyone looking to enter the security profession. Doubling as the text for a cybersecurity course, it is also a useful reference for cybersecurity testing, IT test/development, and system/network administration. Covers everything from basic network administration security skills through advanced command line scripting, tool customization, and log analysis skills Dives deeper into such intense topics as wireshark/tcpdump filtering, Google hacks, Windows/Linux scripting, Metasploit command line, and tool customizations Delves into network administration for Windows, Linux, and VMware Examines penetration testing, cyber investigations, firewall configuration, and security tool customization Shares techniques for cybersecurity testing, planning, and reporting Cybersecurity: Managing Systems, Conducting Testing, and Investigating Intrusions is a comprehensive and authoritative look at the critical topic of cybersecurity from start to finish.
Local Note:
Electronic reproduction. Ann Arbor, Michigan : ProQuest Ebook Central, 2017. Available via World Wide Web. Access may be limited to ProQuest Ebook Central affiliated libraries.
Electronic Access:
Click to View
Holds: Copies: