Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Cybersecurity - Attack and Defense Strategies

You're reading from   Cybersecurity - Attack and Defense Strategies Infrastructure security with Red Team and Blue Team tactics

Arrow left icon
Product type Paperback
Published in Jan 2018
Publisher Packt
ISBN-13 9781788475297
Length 384 pages
Edition 1st Edition
Languages
Tools
Arrow right icon
Authors (2):
Arrow left icon
Yuri Diogenes Yuri Diogenes
Author Profile Icon Yuri Diogenes
Yuri Diogenes
Dr. Erdal Ozkaya Dr. Erdal Ozkaya
Author Profile Icon Dr. Erdal Ozkaya
Dr. Erdal Ozkaya
Arrow right icon
View More author details
Toc

Table of Contents (18) Chapters Close

Preface 1. Security Posture 2. Incident Response Process FREE CHAPTER 3. Understanding the Cybersecurity Kill Chain 4. Reconnaissance 5. Compromising the System 6. Chasing a User's Identity 7. Lateral Movement 8. Privilege Escalation 9. Security Policy 10. Network Segmentation 11. Active Sensors 12. Threat Intelligence 13. Investigating an Incident 14. Recovery Process 15. Vulnerability Management 16. Log Analysis 17. Other Books You May Enjoy

What this book covers

Chapter 1Security Posture, defines what constitute a secure posture and how it helps in understanding the importance of having a good defense and attack strategy.

Chapter 2Incident Response Process, introduces the incident response process and the importance to have one. It goes over different industry standards and best practices for handling the incident response.

Chapter 3Understanding the Cybersecurity Kill Chain, prepares the reader to understand the mindset of an attacker, the different stages of the attack, and what usually takes place in each one of those phases.

Chapter 4Reconnaissance, speaks about the different strategies to perform reconnaissance and how data is gathered to obtain information about the target for planning the attack.

Chapter 5, Compromising the System, shows current trends in strategies to compromise the system and explains how to compromise a system.

Chapter 6Chasing a User's Identity, explains the importance of protecting the user's identity to avoid credential theft and goes through the process of hacking the user's identity.

Chapter 7Lateral Movement, describes how attackers perform lateral movement once they compromise one system.

Chapter 8Privilege Escalation, shows how attackers can escalate privileges in order to gain administrative access to the network system.

Chapter 9Security Policy, focuses on the different aspects of the initial defense strategy, which starts with the importance of a well-created security policy and goes over the best practices for security policies, standards, security awareness training, and core security controls.

Chapter 10Network Segmentation, looks into different aspects of defense in depth, covering physical network segmentation as well as the virtual and hybrid cloud.

Chapter 11Active Sensors, details different types of network sensors that help the organizations to detect attacks.

Chapter 12Threat Intelligence, speaks about the different aspects of threat intelligence from the community as well as from the major vendors.

Chapter 13, Investigating an Incident, goes over two case studies, for an on-premises compromised system and for a cloud-based compromised system, and shows all the steps involved in a security investigation.

Chapter 14Recovery Process, focuses on the recovery process of a compromised system and explains how crucial it is to know what all options are available since live recovery of a system is not possible during certain circumstances.  

Chapter 15Vulnerability Management, describes the importance of vulnerability management to mitigate vulnerability exploitation. It covers the current threat landscape and the growing number of ransomware that exploits known vulnerabilities.

Chapter 16Log Analysis, goes over the different techniques for manual log analysis since it is critical for the reader to gain knowledge on how to deeply analyze different types of logs to hunt suspicious security activities.

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at $19.99/month. Cancel anytime