Home | Amazing | Today | Tags | Publishers | Years | Account | Search 
Windows Security Monitoring: Scenarios and Patterns

Buy

Dig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security

Written by a former Microsoft security program manager, DEFCON "Forensics CTF" village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating system′s event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenario–based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities.

This book is based on the author′s experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity.

Learn to:

  • Implement the Security Logging and Monitoring policy
  • Dig into the Windows security auditing subsystem
  • Understand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system

About the Author

Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference "Forensics CTF" village and has been a speaker at Microsoft′s Bluehat security conference. In addition, Andrei is an author of the "Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference" and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.

(HTML tags aren't allowed.)

Zero to One: Notes on Startups, or How to Build the Future
Zero to One: Notes on Startups, or How to Build the Future

#1 NEW YORK TIMES BESTSELLER


If you want to build a better future, you must believe in secrets.


The great secret of our time is that there are still uncharted frontiers to explore and new inventions to create. In Zero to One, legendary entrepreneur and investor Peter Thiel
...

Anywhere Computing with Laptops: Making Mobile Easier (One-Off)
Anywhere Computing with Laptops: Making Mobile Easier (One-Off)
You bought your Centrino laptop computer because of its ease-of-use and portability. But are you using your laptop to its maximum potential? Anywhere Computing with Laptops: Making Mobile Easier will show you what to expect when buying and configuring your laptop and how to use built-in features such as digital...
Ontologies-Based Business Integration
Ontologies-Based Business Integration
The globalization of everyday business and increasing international trade lead to a growing need to improve national and international business collaborations and transactions. Upcoming new technologies for e-business transactions allow for new ways of process, information and application integration. But business partners almost always have...

PyTorch Recipes: A Problem-Solution Approach
PyTorch Recipes: A Problem-Solution Approach
Get up to speed with the deep learning concepts of Pytorch using a problem-solution approach. Starting with an introduction to PyTorch, you'll get familiarized with tensors, a type of data structure used to calculate arithmetic operations and also learn how they operate. You will then take a look...
Security Administrator Street Smarts: A Real World Guide to CompTIA Security+ Skills
Security Administrator Street Smarts: A Real World Guide to CompTIA Security+ Skills

A step-by-step guide to the tasks involved in security administration

If you aspire to a career in security administration, one of your greatest challenges will be gaining hands-on experience. This book takes you through the most common security admin tasks step by step, showing you the way around many of the roadblocks you...

The Facts on File Encyclopedia of Health And Medicine
The Facts on File Encyclopedia of Health And Medicine

"The Facts On File Encyclopedia of Health and Medicine" is a comprehensive, four-volume reference perfect for a wide audience - from students to health professionals to lay readers - looking for reliable, accurate, accessible health information. Under direction of the Medical Advisory Review Panel, this authoritative, reference...

©2019 LearnIT (support@pdfchm.net) - Privacy Policy