(as of Jan 24, 2024 02:52:39 UTC – Details)
Updated edition of the bestselling guide for planning attack and defense strategies based on the current threat landscape
Key FeaturesUpdated for ransomware prevention, security posture management in multi-cloud, Microsoft Defender for Cloud, MITRE ATT&CK Framework, and moreExplore the latest tools for ethical hacking, pentesting, and Red/Blue teamingIncludes recent real-world examples to illustrate the best practices to improve security postureBook Description
Cybersecurity – Attack and Defense Strategies, Third Edition will bring you up to speed with the key aspects of threat assessment and security hygiene, the current threat landscape and its challenges, and how to maintain a strong security posture.
In this carefully revised new edition, you will learn about the Zero Trust approach and the initial Incident Response process. You will gradually become familiar with Red Team tactics, where you will learn basic syntax for commonly used tools to perform the necessary operations. You will also learn how to apply newer Red Team techniques with powerful tools. Simultaneously, Blue Team tactics are introduced to help you defend your system from complex cyber-attacks. This book provides a clear, in-depth understanding of attack/defense methods as well as patterns to recognize irregular behavior within your organization. Finally, you will learn how to analyze your network and address malware, while becoming familiar with mitigation and threat detection techniques.
By the end of this cybersecurity book, you will have discovered the latest tools to enhance the security of your system, learned about the security controls you need, and understood how to carry out each step of the incident response process.
What you will learnLearn to mitigate, recover from, and prevent future cybersecurity eventsUnderstand security hygiene and value of prioritizing protection of your workloadsExplore physical and virtual network segmentation, cloud network visibility, and Zero Trust considerationsAdopt new methods to gather cyber intelligence, identify risk, and demonstrate impact with Red/Blue Team strategiesExplore legendary tools such as Nmap and Metasploit to supercharge your Red TeamDiscover identity security and how to perform policy enforcementIntegrate threat detection systems into your SIEM solutionsDiscover the MITRE ATT&CK Framework and open-source tools to gather intelligenceWho this book is for
If you are an IT security professional who wants to venture deeper into cybersecurity domains, this book is for you. Cloud security administrators, IT pentesters, security consultants, and ethical hackers will also find this book useful. Basic understanding of operating systems, computer networking, and web applications will be helpful.
Table of ContentsSecurity PostureIncident Response ProcessWhat is a Cyber Strategy? Understanding the Cybersecurity Kill ChainReconnaissanceCompromising the SystemChasing a User’s IdentityLateral MovementPrivilege EscalationSecurity PolicyNetwork SecurityActive SensorsThreat IntelligenceInvestigating an IncidentRecovery ProcessVulnerability ManagementLog Analysis
From the Publisher
What’s new in this edition?
The previous edition was released in 2019, prior to the pandemic. With the pandemic, we saw many changes in the threat landscape, and reviewed and updated each chapter according to this new reality. These updates include content on new trends related to security hygiene, the use of the MITRE ATT&CK framework (not only for threat detection but also to improve security posture), and new attacks and tools that have come out or been updated since we released the second edition.
What is the key takeaway of this book?
The key takeaway is that cybersecurity is a combination of many pillars, and there is no silver bullet to resolve all problems — as a matter of fact, this book shows you exactly the opposite of that, because the reality is that cybersecurity is not just the implementation of security controls, it is the continuous monitoring and improvement of the environment. That’s the vision of this book and that’s how the content is driven throughout the chapters.
What approach does the book take?
This book uses an end-to-end approach, right from where your journey begins and how it evolves to ensure that the environment is always progressing to a better state. The initial chapters focus on preventative measures, teaching you how to improve your security posture by ensuring that you are doing your homework to reduce the likelihood that threat actors will exploit your environment. Once this is done, you’ll explore attack and defense strategies aiming for continuous improvement of the environment.
We (Yuri and Erdal) bring decades of experience in the cybersecurity field from different angles since we’ve worked at different positions in the cybersecurity arena. Our skills and experiences are very complimentary, which helps you to have different perspectives as you evolve through this journey.
ASIN : B09YDFPZKW
Publisher : Packt Publishing; 3rd edition (September 30, 2022)
Publication date : September 30, 2022
Language : English
File size : 69314 KB
Text-to-Speech : Enabled
Screen Reader : Supported
Enhanced typesetting : Enabled
X-Ray : Not Enabled
Word Wise : Not Enabled
Sticky notes : On Kindle Scribe
Print length : 570 pages