OSSEC Host-Based Intrusion Detection Guide by Andrew Hay
OSSEC Host-Based Intrusion Detection Guide by Andrew Hay PDF, ePub eBook D0wnl0ad
This book is the definitive guide on the OSSEC Host-based Intrusion Detection system and frankly, to really use OSSEC you are going to need a definitive guide. Documentation has been available since the start of the OSSEC project but, due to time constraints, no formal book has been created to outline the various features and functions of the OSSEC product. This has left very important and powerful features of the product undocumented...until now! The book you are holding will show you how to install and configure OSSEC on the operating system of your choice and provide detailed examples to help prevent and mitigate attacks on your systems. -- Stephen Northcutt OSSEC determines if a host has been compromised in this manner by taking the equivalent of a picture of the host machine in its original, unaltered state. This "picture" captures the most relevant information about that machine's configuration. OSSEC saves this "picture" and then constantly compares it to the current state of that machine to identify anything that may have changed from the original configuration. Now, many of these changes are necessary, harmless, and authorized, such as a system administrator installing a new software upgrade, patch, or application. But, then there are the not-so-harmless changes, like the installation of a rootkit, trojan horse, or virus. Differentiating between the harmless and the not-so-harmless changes determines whether the system administrator or security professional is managing a secure, efficient network or a compromised network which might be funneling credit card numbers out to phishing gangs or storing massive amounts of pornography creating significant liability for that organization. Separating the wheat from the chaff is by no means an easy task. Hence the need for this book. The book is co-authored by Daniel Cid, who is the founder and lead developer of the freely available OSSEC host-based IDS. As such, readers can be certain they are reading the most accurate, timely, and insightful information on OSSEC.
All disc-based content for this title is now available on the Web.
* Nominee for Best Book Bejtlich read in 2008!
* http://taosecurity.blogspot.com/2008/12/best-book-bejtlich-read-in-2008.html
• Get Started with OSSEC
Get an overview of the features of OSSEC including commonly used terminology, pre-install preparation, and deployment considerations.
• Follow Steb-by-Step Installation Instructions
Walk through the installation process for the "local”, “agent”, and "server" install types on some of the most popular operating systems available.
• Master Configuration
Learn the basic configuration options for your install type and learn how to monitor log files, receive remote messages, configure email notification, and configure alert levels.
• Work With Rules
Extract key information from logs using decoders and how you can leverage rules to alert you of strange occurrences on your network.
• Understand System Integrity Check and Rootkit Detection
Monitor binary executable files, system configuration files, and the Microsoft Windows registry.
• Configure Active Response
Configure the active response actions you want and bind the actions to specific rules and sequence of events.
• Use the OSSEC Web User Interface
Install, configure, and use the community-developed, open source web interface available for OSSEC.
• Play in the OSSEC VMware Environment Sandbox
• Dig Deep into Data Log Mining
Take the “high art” of log analysis to the next level by breaking the dependence on the lists of strings or patterns to look for in the logs.
From reader reviews:
Michael Floyd:
Here thing why this specific OSSEC Host-Based Intrusion Detection Guide are different and trustworthy to be yours. First of all studying a book is good nevertheless it depends in the content of the usb ports which is the content is as delicious as food or not. OSSEC Host-Based Intrusion Detection Guide giving you information deeper since different ways, you can find any book out there but there is no book that similar with OSSEC Host-Based Intrusion Detection Guide. It gives you thrill reading through journey, its open up your current eyes about the thing which happened in the world which is might be can be happened around you. It is easy to bring everywhere like in park your car, café, or even in your technique home by train. In case you are having difficulties in bringing the paper book maybe the form of OSSEC Host-Based Intrusion Detection Guide in e-book can be your substitute.
Janice Delarosa:
This OSSEC Host-Based Intrusion Detection Guide tend to be reliable for you who want to become a successful person, why. The reason why of this OSSEC Host-Based Intrusion Detection Guide can be on the list of great books you must have will be giving you more than just simple looking at food but feed an individual with information that maybe will shock your previous knowledge. This book is actually handy, you can bring it everywhere and whenever your conditions in e-book and printed people. Beside that this OSSEC Host-Based Intrusion Detection Guide forcing you to have an enormous of experience like rich vocabulary, giving you trial run of critical thinking that we all know it useful in your day action. So , let's have it and luxuriate in reading.
Marvin Boyer:
The book untitled OSSEC Host-Based Intrusion Detection Guide contain a lot of information on the item. The writer explains your girlfriend idea with easy method. The language is very clear to see all the people, so do certainly not worry, you can easy to read that. The book was written by famous author. The author provides you in the new period of time of literary works. You can read this book because you can read more your smart phone, or product, so you can read the book with anywhere and anytime. In a situation you wish to purchase the e-book, you can open their official web-site as well as order it. Have a nice learn.
Read OSSEC Host-Based Intrusion Detection Guide by Andrew Hay for online ebook
OSSEC Host-Based Intrusion Detection Guide by Andrew Hay Free PDF d0wnl0ad, audio books, books to read, good books to read, cheap books, good books, online books, books online, book reviews epub, read books online, books to read online, online library, greatbooks to read, PDF best books to read, top books to read OSSEC Host-Based Intrusion Detection Guide by Andrew Hay books to read online.
No comments:
Post a Comment