Reverse Deception Organized Cyber Threat Counter-Exploitation (Paperback)
暫譯: 反向欺騙:組織性網路威脅反制與利用

Sean Bodmer, Dr. Max Kilger, Gregory Carpenter, Jade Jones

  • 出版商: McGraw-Hill Education
  • 出版日期: 2012-07-24
  • 定價: $1,400
  • 售價: 5.0$700
  • 語言: 英文
  • 頁數: 464
  • 裝訂: Paperback
  • ISBN: 0071772499
  • ISBN-13: 9780071772495
  • 相關分類: 資訊安全駭客 Hack
  • 立即出貨 (庫存 < 4)

相關主題

商品描述

A complete guide to understanding and fighting advanced persistent threats—today's most destructive risk to enterprise security

Reverse Deception: Organized Cyber Threat Counter-Exploitation explains how to identify advanced persistent threats (APTs), categorize them according to risk level, and prioritize your actions accordingly by applying expert, field-tested private- and government-sector methods (NSA, FBI, and DOD).

APTs cannot be seen, spread invisibly, and then continue to live in an enterprise network, undetected. In this one-of-a-kind book, the authors explain how to get—and stay—ahead of today's well-organized and extremely persistent brand of network enemies. The book describes the characteristics of malware and botnets, how they can morph, evade detection, and spin off decoys that live in-network, while appearing to have been cleaned up and debugged. This detailed guide then reveals how to detect the appearance of malicious code, decode the types of enemies they originate from, and finally, how to extricate malcode and deflect its future entry into networks.

Reverse Deception: Organized Cyber Threat Counter-Exploitation features:

  • Full coverage of the #1 feared type of network attack today, the APT
  • Descriptions of cyber espionage tactics seen in the U.S. and internationally, with comparisons of the types of countermeasures permissible by law in the U.S. and Asia versus less strict countries in Europe, the Middle East, and Africa
  • Enthralling case studies and true stories from the authors' FBI, DOD, NSA, and private sector work
  • Foreword by Fred Feer, a security professional with 40 years’ experience with the U.S. Army counterintelligence, CIA, RAND, and independent consulting
  • Complete coverage of key aspects of deception, counter-deception, behavioral profiling, and security within the cyber realm
  • Cat-and-mouse strategies from the best in the game—explains how to implement deception and disinformation techniques against a variety of incoming threats aimed at enticing adversaries out into the open
  • A fresh perspective on innovative, field-tested ideas for successfully countering current digital threats—plus expected characteristics of the next threats to come
  • Legal explanations of capabilities, limitations, and requirements for assisting law enforcement investigations

Coverage includes:
Deception Throughout History to Today; The Applications & Goals of Cyber Counterintelligence; The Missions and Outcomes of Criminal Profiling; Legal & Ethical Aspects of Deception; Attack Tradecraft; Operational Deception; Tools, Tactics & Procedures; Attack Attribution; Black Hat Motivators; Understanding Advanced Persistent Threats; When & When Not to Act; Implementation & Validation Tactics

商品描述(中文翻譯)

A complete guide to understanding and fighting advanced persistent threats—today's most destructive risk to enterprise security

《反向欺騙:組織性網路威脅反制剖析》解釋了如何識別高級持續性威脅(APTs),根據風險等級對其進行分類,並通過應用專家和經過實地測試的私營和政府部門方法(NSA、FBI 和 DOD)來優先考慮您的行動。

APTs 是無法被察覺的,會隱形擴散,然後在企業網路中持續存在而不被發現。在這本獨一無二的書中,作者解釋了如何在當今組織良好且極具持續性的網路敵人面前保持領先。該書描述了惡意軟體和機器人網路的特徵,它們如何變形、逃避檢測,並產生在網路中存在的誘餌,儘管看起來已經被清理和除錯。這本詳細的指南接著揭示了如何檢測惡意代碼的出現,解碼它們來源的敵人類型,並最終如何清除惡意代碼並防止其未來進入網路。

《反向欺騙:組織性網路威脅反制剖析》的特色包括:
- 全面覆蓋當今最令人畏懼的網路攻擊類型,即 APT
- 描述在美國及國際上看到的網路間諜戰術,並比較美國和亞洲法律允許的反制措施與歐洲、中東和非洲較不嚴格國家的差異
- 來自作者在 FBI、DOD、NSA 和私營部門工作的引人入勝的案例研究和真實故事
- 由 Fred Feer 撰寫的前言,他是一位擁有 40 年美國陸軍反情報、CIA、RAND 和獨立諮詢經驗的安全專業人士
- 完整覆蓋網路領域中欺騙、反欺騙、行為分析和安全的關鍵方面
- 來自行業最佳的貓鼠策略——解釋如何針對各種旨在引誘對手現身的來襲威脅實施欺騙和錯誤信息技術
- 對成功反制當前數位威脅的創新、經過實地測試的想法的新視角——以及未來威脅的預期特徵
- 對協助執法調查的能力、限制和要求的法律解釋

涵蓋內容包括:
歷史上的欺騙到今天;網路反情報的應用與目標;犯罪分析的任務與結果;欺騙的法律與倫理方面;攻擊技術;操作欺騙;工具、戰術與程序;攻擊歸因;黑帽動機;理解高級持續性威脅;何時行動與何時不行動;實施與驗證戰術