Overcome Your Fastest-Growing Security Problem: Internal, Client-Based Attacks Today\'s most devastating Security attacks are launched from within the company, by intruders who have compromised your users\' Web browsers, e-mail and chat clients, and other Internet-connected software.
Coverage includes Architecting defensible networks with pervasive awareness: theory, techniques, and tools Defending against malicious sites, Internet Explorer exploitations, bots, Trojans, worms, and more Dissecting session and full-content data to reveal unauthorized activity Implementing effective Layer 3 network access control Responding to Internal attacks, including step-by-step network forensics Assessing your network\'s current ability to resist Internal attacks Setting reasonable corporate access policies Detailed case studies, including the discovery of Internal and IRC-based bot nets Advanced Extrusion det.
Get this book and protect yourself.
Whether you\'re an architect, analyst, engineer, administrator, or IT manager, you face a new generation of Security risks.
Now, in Extrusion Detection , he brings the same level of insight to defending against today\'s rapidly emerging Internal threats.
Bejtlich\'s The Tao of Network Security Monitoring earned acclaim as the definitive guide to overcoming external threats.
You will learn how to assess threats from Internal clients, instrument networks to detect anomalies in outgoing traffic, architect networks to resist Internal attacks, and respond effectively when attacks occur.
Top Security consultant Richard Bejtlich offers clear, easy-to-understand explanations of today\'s client-based threats and effective, step-by-step solutions, demonstrated against real traffic and data.
Extrusion Detection is a comprehensive guide to preventing, detecting, and mitigating Security breaches from the inside out.
You must systematically protect client software and monitor the traffic it generates.
Hardening your network perimeter won\'t solve this problem.
Overcome Your Fastest-Growing Security Problem: Internal, Client-Based Attacks Today\'s most devastating Security attacks are launched from within the company, by intruders who have compromised your users\' Web browsers, e-mail and chat clients, and other Internet-connected software