Network Intrusion Detection (3rd Edition)
| Author | : | |
| Rating | : | 4.65 (794 Votes) |
| Asin | : | 0735712654 |
| Format Type | : | paperback |
| Number of Pages | : | 512 Pages |
| Publish Date | : | 2015-05-30 |
| Language | : | English |
DESCRIPTION:
It emphasizes, though, proven techniques for recognizing attacks while they're underway. Network Intrusion Detection: An Analyst's Handbook explains some of what you need to know to prevent unauthorized accesses of your networked computers and minimize the damage intruders can do. Northcutt opens with a technical brief on the methods used by Kevin Mitnick in his attack upon Tsutomu Shimomura's server. Reading Northcutt's analysis is like reading a play-by-play account of a football match. In documenting that fam
While the authors refer to research and theory, they focus their attention on providing practical information. The Chief Information Warfare Officer for the entire United States teaches you how to protect your corporate network. The authors are literally the most recognized names in this specialized field, with unparalleled experience in defending our country's government and military computer networks. New to this edition is coverage of packet dissection, IP datagram fields, forensics, and snort filters.. This book is a training aid and reference for intrusion detection analysts
"Northcutt hits the ball out of the park!" according to Richard Bejtlich. I am the chief of a 15 person intrusion detection team, with responsibility for centralized, around-the-clock monitoring of a global network. I believe I have enough experience to claim Steven's book is first rate and sorely needed. His reconstruction of a Christmas Eve system compromise and his analysis of Kevin Mitnick's TCP hijack of Tsutomu Shimomura's host are excellent case studies. His coverage of reset scans and other non-standard reconnaissance techniques prompted me to scour my traffic for the same events and write a paper on my findings. I do not agree with. Readable, intelligent, down-to-earth. Network Intrusion Detection is rare among technical books - it's comprehensive, accurate, interesting, and intelligent; it's got none of the "filler" chapters which seem to be prevalent in the genre. It's well worth the relatively small investment of time and money required to read and understand it.The author has "been there, done that" which gives him a perspective unavailable to professional technical authors who write about Java one month, CORBA the next, will be assigned a firewall book next.This book will be useful to people responsible for intrusion detection, . "Best IDS book for hands-on implementors" according to J. G. Heiser. Of the Best IDS book for hands-on implementors Of the 3 available intrusion detection texts, this is by far the best for someone who actually wants to do intrusion detection. It is breezy & chatty--like sitting down with a good friend (unfortunately, one who doesn't organize his thoughts very well and whose editor was apparently in a hurry).This is a bits & bytes book; it assumes some knowledge of TCP/IP and security concepts, but it accomodates non-specialists. It is useful for readers of varying levels of familiarity with Internet protocols. Northcutt provides an excellent introduction to the specific mechanisms. available intrusion detection texts, this is by far the best for someone who actually wants to do intrusion detection. It is breezy & chatty--like sitting down with a good friend (unfortunately, one who doesn't organize his thoughts very well and whose editor was apparently in a hurry).This is a bits & bytes book; it assumes some knowledge of TCP/IP and security concepts, but it accomodates non-specialists. It is useful for readers of varying levels of familiarity with Internet protocols. Northcutt provides an excellent introduction to the specific mechanisms