Home | Amazing | Today | Tags | Publishers | Years | Account | Search 
Intrusion Prevention and Active Response : Deploying Network and Host IPS

Buy
From the Foreword by Stephen Northcutt, Director of Training and Certification, The SANS Institute

Within a year of the infamous "Intrusion Detection is Dead" report by Gartner, we started seeing Intrusion Prevention System (IPS) products that actually worked in the real world. Security professionals are going to be approaching management for funding in the next year or two to procure intrusion prevention devices, especially Intelligent switches from 3Com (TippingPoint), as well as host-based intrusion prevention solutions like Cisco Security Agent, Platform Logic, Ozone or CrossTec. Both managers and security technologists face a pressing need to get up to speed, and fast, on the commercial and open source intrusion prevention solutions. This is the first book-length work that specifically concentrates on the concept, implementation, and implications of intrusion prevention and active response. The term IPS has been thrown around with reckless abandon by the security community. Here, the author team works to establish a common understanding and terminology, as well as compare the approaches to intrusion prevention.

  • Transition from Intrusion Detection to Intrusion PreventionUnlike IDS, IPS can modify application-layer data or perform system call interception.
  • Develop an Effective Packet Inspection ToolboxUse products such as the Metasploit Framework as a source of test attacks.
  • Travel Inside the SANS Internet Storm CenterReview packet captures of actual attacks, like the "Witty" worm, directly from the handler's diary.
  • Protect Against False PositivesRemember that, unlike an IDS, an IPS will REACT to an intrusion.
  • Integrate Multiple Layers of IPSCreate a multivendor defense at the Data Link, Network, Transport, and Application layers.
  • Deploy Host Attack Prevention MechanismsIncludes stack hardening, system call interception, and application shimming.
  • Implement Inline Packet Payload AlterationUse Snort Inline or a Linux kernel patch to the Netfilter string match extension.
  • Covers all Major Intrusion Prevention and Active Response SystemsIncludes Snort Inline, SnortSAM, PaX, StackGuard, LIDS, FWSnort, PSAD, Enterasys Web IPS, and mod_securit.
  • Deploy IPS on Web Servers at the Applications LayerThe loading of an application-level IPS in process by the Web server will protect the server and inspect encrypted traffic.
(HTML tags aren't allowed.)

Pituitary Today: Molecular, Physiological And Clinical Aspects (Frontiers of Hormone Research)
Pituitary Today: Molecular, Physiological And Clinical Aspects (Frontiers of Hormone Research)

Function and disease of the pituitary gland have long been at the center of research interest. Based on a recent meeting held at Iguazu Falls, Argentina, this volume of Frontiers of Hormone Research highlights scientifically exciting and clinically relevant areas in this fast-developing filed. Renowned specialists and experts from Latin and...

Learning Core Audio: A Hands-On Guide to Audio Programming for Mac and iOS
Learning Core Audio: A Hands-On Guide to Audio Programming for Mac and iOS

Audio can affect the human brain in the most powerful and profound ways. Using Apple’s Core Audio, you can leverage all that power in your own Mac and iOS software, implementing features ranging from audio capture to real-time effects, MP3 playback to virtual instruments, web radio to VoIP support. The most sophisticated audio...

Ophthalmic Microsurgical Suturing Techniques
Ophthalmic Microsurgical Suturing Techniques

This is a reference text for both the novice and the accomplished ophthalmic surgeon. The book imparts basic information on tissue tactics and knot tying and demonstrates the applicability of these techniques to various microsurgical situations, in both the anterior and the posterior segment of the eye. Illustrated with photos and line...


Java Frameworks and Components: Accelerate Your Web Application Development
Java Frameworks and Components: Accelerate Your Web Application Development

This book is a practical tool for Java programmers. It provides the necessary information for them to find, evaluate, and select suitable application frameworks. This work explains in plain language the benefits of frameworks and component technologies, specifically in relation to web application development. It is unique in that it does not...

Wicked Cool Java : Code Bits, Open-Source Libraries, and Project Ideas
Wicked Cool Java : Code Bits, Open-Source Libraries, and Project Ideas
Wicked Cool Java contains 101 fun, interesting, and useful ways to get more out of Java. This isn't intended as a Java tutorial--it's targeted at developers and system architects who have some basic Java knowledge but may not be familiar with the wide range of libraries available. Full of example code and ideas for combining them in useful...
Mastering Blender
Mastering Blender

Blender, the free alternative for professional-quality 3D animation is a complex program to learn, but once users become familiar with its power, they begin to seek more from it.  This book is the first of its kind to explore the more advanced features of Blender so that you can get the most out of the software. You’ll take your...

©2019 LearnIT (support@pdfchm.net) - Privacy Policy