The Tao of network security monitoring : beyond intrusion detection
by
Bejtlich, Richard.
Title
:
The Tao of network security monitoring : beyond intrusion detection
Author
:
Bejtlich, Richard.
ISBN
:
9780321246776
Personal Author
:
Bejtlich, Richard.
Publication Information
:
Boston : Addison-Wesley, ©2005.
Physical Description
:
xxxiv, 798 pages : illustrations ; 24 cm
General Note
:
Includes index.
Contents
:
The security process -- What is network security monitoring? -- Deployment considerations -- The reference intrusion model -- Full content data -- Additional data analysis -- Session data -- Statistical data -- Alert data : Bro and Prelude -- Alert data : NSM using Sguil -- Best practices -- Case studies for managers -- Analyst training program -- Discovering DNS -- Harnessing the power of session data -- Packet monkey heaven -- Tools for attacking network security monitoring -- Tactics for attacking network security monitoring.
Subject Term
:
Computer networks -- Security measures.
Computer networks -- Security measures. (OCoLC)fst00872341
Computersicherheit.
Monitoring
Rechnernetz.
Electronic Access
:
| Library | Material Type | Item Barcode | Shelf Number | Copy | Status |
|---|
| VC Cape Town | General Books | 000025341 | 005.8 BEJ | 1 | On-Shelf Student |
| VC Durban North | General Books | 000020203 | 005.8 BEJ | 1 | On-Shelf Student |
| VC Westville | General Books | 000055289 | 005.8 BEJ | 1 | On-Shelf Student |