Cyber Threat Hunting
暫譯: 網路威脅獵捕
Alfardan, Nadhem
- 出版商: Manning
- 出版日期: 2025-01-28
- 售價: $2,200
- 貴賓價: 9.5 折 $2,090
- 語言: 英文
- 頁數: 416
- 裝訂: Quality Paper - also called trade paper
- ISBN: 163343947X
- ISBN-13: 9781633439474
尚未上市,無法訂購
相關主題
商品描述
Follow the clues, track down the bad actors trying to access your systems, and uncover the chain of evidence left by even the most careful adversary. This practical guide to cyber threat hunting gives a reliable and repeatable framework to see and stop attacks. In Cyber Threat Hunting you will learn how to:
Organizations that actively seek out security intrusions reduce the time that bad actors spend on their sites, increase their cyber resilience, and build strong resistance to sophisticated covert threats. Cyber Threat Hunting teaches you to recognize attempts to access your systems by seeing the clues your adversaries leave behind. It lays out the path to becoming a successful cyber security threat hunter, guiding you from your very first expedition to hunting in complex cloud-native environments. Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications. About the technology There's no question about whether your security will come under attack. It already is. The real question is whether you'll recognize and learn from the attacks when they occur. Cyber threat hunting makes the assumption that a system has been hacked and reveals the signs that have evaded detection tools, or been dismissed as unimportant. In the constantly evolving landscape of modern security, threat hunting is a vital practice to avoid complacency and harden your defenses against attack. About the book Cyber Threat Hunting teaches you how to identify potential breaches of your security. You'll learn by exploring real-life scenarios drawn from author Nadhem AlFardan's twenty years in information security. Beginning with the fundamentals, you'll build a practical hunting framework and discover good practices for optimizing and improving expeditions. You'll learn how to employ advanced techniques that draw on machine learning and statistical analysis to help spot anomalies. Best of all, this practical book comes with downloadable datasets and scenario templates so you can practice and hone your threat hunting techniques. About the reader For security, network, and systems professionals familiar with security tools and Python. About the author Dr. Nadhem AlFardan is a principal cyber security architect leading the security operation center practice for Cisco. Dr. AlFardan leads large security operations center programs for major organizations across several APAC, EMEA and the Americas. His role includes helping customers establish and enhance their cyber threat hunting practice.
- Design and implement a cyber threat hunting framework
- Think like your adversaries
- Conduct threat hunting expeditions
- Streamline how you work with other cyber security teams
- Structure threat hunting expeditions without losing track of activities and clues
- Use statistics and machine learning techniques to hunt for threats
Organizations that actively seek out security intrusions reduce the time that bad actors spend on their sites, increase their cyber resilience, and build strong resistance to sophisticated covert threats. Cyber Threat Hunting teaches you to recognize attempts to access your systems by seeing the clues your adversaries leave behind. It lays out the path to becoming a successful cyber security threat hunter, guiding you from your very first expedition to hunting in complex cloud-native environments. Purchase of the print book includes a free eBook in PDF, Kindle, and ePub formats from Manning Publications. About the technology There's no question about whether your security will come under attack. It already is. The real question is whether you'll recognize and learn from the attacks when they occur. Cyber threat hunting makes the assumption that a system has been hacked and reveals the signs that have evaded detection tools, or been dismissed as unimportant. In the constantly evolving landscape of modern security, threat hunting is a vital practice to avoid complacency and harden your defenses against attack. About the book Cyber Threat Hunting teaches you how to identify potential breaches of your security. You'll learn by exploring real-life scenarios drawn from author Nadhem AlFardan's twenty years in information security. Beginning with the fundamentals, you'll build a practical hunting framework and discover good practices for optimizing and improving expeditions. You'll learn how to employ advanced techniques that draw on machine learning and statistical analysis to help spot anomalies. Best of all, this practical book comes with downloadable datasets and scenario templates so you can practice and hone your threat hunting techniques. About the reader For security, network, and systems professionals familiar with security tools and Python. About the author Dr. Nadhem AlFardan is a principal cyber security architect leading the security operation center practice for Cisco. Dr. AlFardan leads large security operations center programs for major organizations across several APAC, EMEA and the Americas. His role includes helping customers establish and enhance their cyber threat hunting practice.
商品描述(中文翻譯)
跟隨線索,追蹤試圖訪問您系統的壞演員,揭示即使是最小心的對手所留下的證據鏈。這本實用的網路威脅獵捕指南提供了一個可靠且可重複的框架,以便識別和阻止攻擊。
在網路威脅獵捕中,您將學習如何:- 設計和實施網路威脅獵捕框架
- 像對手一樣思考
- 進行威脅獵捕探險
- 簡化與其他網路安全團隊的合作方式
- 在不失去活動和線索的情況下結構化威脅獵捕探險
- 使用統計和機器學習技術來獵捕威脅
積極尋找安全入侵的組織能減少壞演員在其網站上花費的時間,增強其網路韌性,並建立對複雜隱蔽威脅的強大抵抗力。網路威脅獵捕教您如何通過觀察對手留下的線索來識別訪問您系統的嘗試。它為您鋪設了成為成功的網路安全威脅獵捕者的道路,指導您從第一次探險到在複雜的雲原生環境中進行獵捕。 購買印刷版書籍可獲得Manning Publications提供的免費PDF、Kindle和ePub格式電子書。 關於技術 毫無疑問,您的安全將會受到攻擊。它已經在發生。真正的問題是,當攻擊發生時,您是否能夠識別並從中學習。網路威脅獵捕假設系統已被駭客入侵,並揭示那些逃避檢測工具或被視為不重要的跡象。在不斷演變的現代安全環境中,威脅獵捕是一項至關重要的實踐,以避免自滿並加強防禦以抵禦攻擊。 關於本書 網路威脅獵捕教您如何識別潛在的安全漏洞。您將通過探索作者Nadhem AlFardan在資訊安全領域二十年的真實案例來學習。從基礎開始,您將建立一個實用的獵捕框架,並發現優化和改善探險的良好實踐。您將學習如何運用基於機器學習和統計分析的先進技術來幫助識別異常。最棒的是,這本實用的書籍附帶可下載的數據集和情境模板,讓您可以練習和磨練您的威脅獵捕技術。 關於讀者 適合熟悉安全工具和Python的安全、網路和系統專業人士。 關於作者 Dr. Nadhem AlFardan是思科的首席網路安全架構師,負責安全運營中心的實踐。Dr. AlFardan為多個亞太、歐洲、中東和美洲的大型組織領導安全運營中心的重大計劃。他的角色包括幫助客戶建立和增強其網路威脅獵捕實踐。
作者簡介
Dr Nadhem AlFardan is a principal cyber security architect leading the security operation centre practice for Cisco. Dr AlFardan leads large security operations centre programs for major organisations across several APAC, EMEA and the Americas. His role includes helping customers establish and enhance their cyber threat hunting practice.
作者簡介(中文翻譯)
納德姆·阿爾法丹博士是思科的首席網路安全架構師,負責安全運營中心的實踐。阿爾法丹博士領導著針對多個亞太、歐洲、中東及美洲主要組織的大型安全運營中心計劃。他的角色包括協助客戶建立和增強其網路威脅獵捕的實踐。
