Defensive Security Handbook: Best Practices for Securing Infrastructure
暫譯: 防禦性安全手冊:基礎設施安全最佳實踐
Lee Brotherston, Amanda Berlin
- 出版商: O'Reilly
- 出版日期: 2017-05-16
- 定價: $1,800
- 售價: 5.0 折 $900
- 語言: 英文
- 頁數: 284
- 裝訂: Paperback
- ISBN: 1491960388
- ISBN-13: 9781491960387
-
相關分類:
Penetration-test
-
相關翻譯:
資安防禦指南|資訊安全架構實務典範 (Defensive Security Handbook: Best Practices for Securing Infrastructure) (繁中版)
安全防禦入門手冊 (簡中版)
-
其他版本:
Defensive Security Handbook: Best Practices for Securing Infrastructure (Paperback)
買這商品的人也買了...
-
C++ Primer, 4/e (中文版)$990$891 -
Learning from Data: Concepts, Theory, and Methods (Hardcover)$5,690$5,406 -
大話設計模式$620$490 -
無瑕的程式碼-敏捷軟體開發技巧守則 (Clean Code: A Handbook of Agile Software Craftsmanship)$580$452 -
易讀程式之美學-提升程式碼可讀性的簡單法則 (The Art of Readable Code)$480$379 -
XSS 網站安全技術與實務 : 防護解密剖析大進擊$480$374 -
精通 Python|運用簡單的套件進行現代運算 (Introducing Python: Modern Computing in Simple Packages)$780$616 -
職業駭客的告白 : 軟體反組譯、木馬病毒與入侵翻牆竊密$620$484 -
不再聽不懂!圖解網站建置與開發$450$356 -
Git 團隊使用手冊 (Git for Teams: A User-Centered Approach to Creating Efficient Workflows in Git)$580$458 -
Designing Data-Intensive Applications: The Big Ideas Behind Reliable, Scalable, and Maintainable Systems (Paperback)$1,995$1,890 -
圖解雲端技術|基礎架構x運作原理 x API$480$379 -
寫程式前就該懂的演算法 ─ 資料分析與程式設計人員必學的邏輯思考術 (Grokking Algorithms: An illustrated guide for programmers and other curious people)$390$308 -
$990Intelligence-Driven Incident Response: Outwitting the Adversary -
大數據時代一定要會的自動化資料搜集術$480$408 -
資安風險評估指南 (Network Security Assessment, 3/e)$780$616 -
Computer Networking : A Top-Down Approach, 7/e (IE-Paperback)$1,420$1,392 -
大數據時代必學的超吸睛視覺化工具與技術:Excel + Tableau 成功晉升資料分析師$520$406 -
軟體專案開發實務|別只當編程猴 (Programming Beyond Practices: Be More Than Just a Code Monkey)$400$316 -
$340套路!機器學習:北美數據科學家的私房課 -
Soft Skills 軟實力|軟體開發人員的生存手冊 (Soft Skills: The software developer's life manual)$520$411 -
鳥哥的 Linux 基礎學習訓練教材$480$408 -
MIS 一定要懂的 82個伺服器建置與管理知識$420$332 -
Exploring Malicious Hacker Communities: Toward Proactive Cyber-Defense$2,200$2,090 -
Node.js 量化投資全攻略:從資料收集到自動化交易系統建構實戰(iThome鐵人賽系列書)【軟精裝】$760$593
商品描述
Despite the increase of high-profile hacks, record-breaking data leaks, and ransomware attacks, many organizations don’t have the budget to establish or outsource an information security (InfoSec) program, forcing them to learn on the job. For companies obliged to improvise, this pragmatic guide provides a security-101 handbook with steps, tools, processes, and ideas to help you drive maximum-security improvement at little or no cost.
Each chapter in this book provides step-by-step instructions for dealing with a specific issue, including breaches and disasters, compliance, network infrastructure and password management, vulnerability scanning, and penetration testing, among others. Network engineers, system administrators, and security professionals will learn tools and techniques to help improve security in sensible, manageable chunks.
- Learn fundamentals of starting or redesigning an InfoSec program
- Create a base set of policies, standards, and procedures
- Plan and design incident response, disaster recovery, compliance, and physical security
- Bolster Microsoft and Unix systems, network infrastructure, and password management
- Use segmentation practices and designs to compartmentalize your network
- Explore automated process and tools for vulnerability management
- Securely develop code to reduce exploitable errors
- Understand basic penetration testing concepts through purple teaming
- Delve into IDS, IPS, SOC, logging, and monitoring
商品描述(中文翻譯)
儘管高調的駭客攻擊、創紀錄的數據洩漏和勒索病毒攻擊不斷增加,許多組織仍然沒有預算來建立或外包資訊安全(InfoSec)計劃,迫使他們在工作中學習。對於那些被迫即興應變的公司,這本務實的指南提供了一本安全入門手冊,包含步驟、工具、流程和想法,幫助您以最低或無成本推動安全改進。
本書的每一章都提供針對特定問題的逐步指導,包括違規和災難、合規性、網路基礎設施和密碼管理、漏洞掃描和滲透測試等。網路工程師、系統管理員和安全專業人員將學習工具和技術,以幫助在可管理的範圍內改善安全性。
- 學習建立或重新設計 InfoSec 計劃的基本原則
- 建立一套基本的政策、標準和程序
- 計劃和設計事件響應、災難恢復、合規性和物理安全
- 加強 Microsoft 和 Unix 系統、網路基礎設施和密碼管理
- 使用分段實踐和設計來劃分您的網路
- 探索自動化流程和漏洞管理工具
- 安全地開發代碼以減少可利用的錯誤
- 通過紫隊(purple teaming)理解基本的滲透測試概念
- 深入了解 IDS、IPS、SOC、日誌記錄和監控
