Applied Incident Response Online now
Description
From the Inside Flap
DEFEND YOUR NETWORK WITH IMMEDIATELY APPLICABLE INCIDENT RESPONSE SKILLS
Incident response is critical for the active defense of any network, and incident responders need up-to-date, actionable techniques with which to engage the adversary. Applied Incident Response details effective ways to respond to advanced attacks against local and remote network resources, providing proven response methods and a framework through which to implement them. Drawing on the author s experience investigating intrusions for the FBI, US Department of Defense (DoD), and many international organizations, this authoritative book covers the core skills needed for incident handling and active network defense, including triaging systems, acquiring memory, imaging disks, collecting network data, log analysis, memory forensics, disk forensics, network security monitoring, adversary emulation, threat hunting, and more. Examples focus on free and open-source tools, but introduce commercial alternatives as well.
As a starting point for new incident handlers, or as a technical reference for hardened incident response veterans, this book details the latest techniques for responding to threats against your network, including:
- Preparing your environment for effective incident response
-
- Leveraging MITRE ATT&CK and threat intelligence for active network defense
-
- Local and remote triage of systems using PowerShell, WMIC, and open-source tools
-
- Acquiring RAM and disk images locally and remotely
-
- Analyzing RAM with Volatility and Rekall
-
- Deep-dive forensic analysis of system drives using open-source or commercial tools
-
- Leveraging Security Onion and Elastic Stack for network security monitoring
-
- Techniques for log analysis and aggregating high-value logs
-
- Static and dynamic analysis of malware with YARA rules, FLARE VM, and Cuckoo Sandbox
-
- Detecting and responding to lateral movement techniques, including pass-the-hash, pass-the-ticket, Kerberoasting, malicious use of PowerShell, and many more
-
- Effective threat hunting techniques
-
- Adversary emulation with Atomic Red Team
-
- Improving preventive and detective controls
-
From the Back Cover
DEFEND YOUR NETWORK WITH IMMEDIATELY APPLICABLE INCIDENT RESPONSE SKILLS
Incident response is critical for the active defense of any network, and incident responders need up-to-date, actionable techniques with which to engage the adversary. Applied Incident Response details effective ways to respond to advanced attacks against local and remote network resources, providing proven response methods and a framework through which to implement them. Drawing on the author s experience investigating intrusions for the FBI, US Department of Defense (DoD), and many international organizations, this authoritative book covers the core skills needed for incident handling and active network defense, including triaging systems, acquiring memory, imaging disks, collecting network data, log analysis, memory forensics, disk forensics, network security monitoring, adversary emulation, threat hunting, and more. Examples focus on free and open-source tools, but introduce commercial alternatives as well.
As a starting point for new incident handlers, or as a technical reference for hardened incident response veterans, this book details the latest techniques for responding to threats against your network, including:
- Preparing your environment for effective incident response
-
- Leveraging MITRE ATT&CK and threat intelligence for active network defense
-
- Local and remote triage of systems using PowerShell, WMIC, and open-source tools
-
- Acquiring RAM and disk images locally and remotely
-
- Analyzing RAM with Volatility and Rekall
-
- Deep-dive forensic analysis of system drives using open-source or commercial tools
-
- Leveraging Security Onion and Elastic Stack for network security monitoring
-
- Techniques for log analysis and aggregating high-value logs
-
- Static and dynamic analysis of malware with YARA rules, FLARE VM, and Cuckoo Sandbox
-
- Detecting and responding to lateral movement techniques, including pass-the-hash, pass-the-ticket, Kerberoasting, malicious use of PowerShell, and many more
-
- Effective threat hunting techniques
-
- Adversary emulation with Atomic Red Team
-
- Improving preventive and detective controls
-
Related products
Data Visualization: A Practical Introduction For Cheap
Original price was: $377.30.$188.65Current price is: $188.65.
Requirements Engineering, 4Ed. Discount
Original price was: $497.75.$248.88Current price is: $248.88.
Switching, Routing and Wireless Essentials Labs & Study Guide (CCNAv7)- Lab Companion Sale
Original price was: $529.95.$158.99Current price is: $158.99.
CCNA Security Study Guide: Exam 210-260, 2th Edition Fashion
Original price was: $244.76.$122.38Current price is: $122.38.
Introduction to Statistics and Data Analysis: With Exercises, Solutions and Applications in R (Softcover Reprint of the Original 1st 2016) Online now
Original price was: $608.95.$182.69Current price is: $182.69.
* By Signing up here i agree to receive Minigear’s email newsletter.
© 2023 Dexons Theme. All rights reserved.
We using safe payment for
coreusproperty.shop © 2025 All Rights Reserved
DEFEND YOUR NETWORK WITH IMMEDIATELY APPLICABLE INCIDENT RESPONSE SKILLS
Incident response is critical for the active defense of any network, and incident responders need up-to-date, actionable techniques with which to engage the adversary. Applied Incident Response details effective ways to respond to advanced attacks against local and remote network resources, providing proven response methods and a framework through which to implement them. Drawing on the author s experience investigating intrusions for the FBI, US Department of Defense (DoD), and many international organizations, this authoritative book covers the core skills needed for incident handling and active network defense, including triaging systems, acquiring memory, imaging disks, collecting network data, log analysis, memory forensics, disk forensics, network security monitoring, adversary emulation, threat hunting, and more. Examples focus on free and open-source tools, but introduce commercial alternatives as well.
As a starting point for new incident handlers, or as a technical reference for hardened incident response veterans, this book details the latest techniques for responding to threats against your network, including:
- Preparing your environment for effective incident response
- Leveraging MITRE ATT&CK and threat intelligence for active network defense
- Local and remote triage of systems using PowerShell, WMIC, and open-source tools
- Acquiring RAM and disk images locally and remotely
- Analyzing RAM with Volatility and Rekall
- Deep-dive forensic analysis of system drives using open-source or commercial tools
- Leveraging Security Onion and Elastic Stack for network security monitoring
- Techniques for log analysis and aggregating high-value logs
- Static and dynamic analysis of malware with YARA rules, FLARE VM, and Cuckoo Sandbox
- Detecting and responding to lateral movement techniques, including pass-the-hash, pass-the-ticket, Kerberoasting, malicious use of PowerShell, and many more
- Effective threat hunting techniques
- Adversary emulation with Atomic Red Team
- Improving preventive and detective controls
- Preparing your environment for effective incident response
- Leveraging MITRE ATT&CK and threat intelligence for active network defense
- Local and remote triage of systems using PowerShell, WMIC, and open-source tools
- Acquiring RAM and disk images locally and remotely
- Analyzing RAM with Volatility and Rekall
- Deep-dive forensic analysis of system drives using open-source or commercial tools
- Leveraging Security Onion and Elastic Stack for network security monitoring
- Techniques for log analysis and aggregating high-value logs
- Static and dynamic analysis of malware with YARA rules, FLARE VM, and Cuckoo Sandbox
- Detecting and responding to lateral movement techniques, including pass-the-hash, pass-the-ticket, Kerberoasting, malicious use of PowerShell, and many more
- Effective threat hunting techniques
- Adversary emulation with Atomic Red Team
- Improving preventive and detective controls
From the Back Cover
DEFEND YOUR NETWORK WITH IMMEDIATELY APPLICABLE INCIDENT RESPONSE SKILLS
Incident response is critical for the active defense of any network, and incident responders need up-to-date, actionable techniques with which to engage the adversary. Applied Incident Response details effective ways to respond to advanced attacks against local and remote network resources, providing proven response methods and a framework through which to implement them. Drawing on the author s experience investigating intrusions for the FBI, US Department of Defense (DoD), and many international organizations, this authoritative book covers the core skills needed for incident handling and active network defense, including triaging systems, acquiring memory, imaging disks, collecting network data, log analysis, memory forensics, disk forensics, network security monitoring, adversary emulation, threat hunting, and more. Examples focus on free and open-source tools, but introduce commercial alternatives as well.
As a starting point for new incident handlers, or as a technical reference for hardened incident response veterans, this book details the latest techniques for responding to threats against your network, including:
Related products
Data Visualization: A Practical Introduction For Cheap
Original price was: $377.30.$188.65Current price is: $188.65.Requirements Engineering, 4Ed. Discount
Original price was: $497.75.$248.88Current price is: $248.88.Switching, Routing and Wireless Essentials Labs & Study Guide (CCNAv7)- Lab Companion Sale
Original price was: $529.95.$158.99Current price is: $158.99.CCNA Security Study Guide: Exam 210-260, 2th Edition Fashion
Original price was: $244.76.$122.38Current price is: $122.38.Introduction to Statistics and Data Analysis: With Exercises, Solutions and Applications in R (Softcover Reprint of the Original 1st 2016) Online now
Original price was: $608.95.$182.69Current price is: $182.69.
© 2023 Dexons Theme. All rights reserved.
- Image
- SKU
- Rating
- Price
- Stock
- Description
- Weight
- Dimensions
- Additional information
- Add to cart