Practical Threat Detection Engineering: A hands-on guide to planning, developing, and validating detection capabilities
Roddie, Megan, Deyalsingh, Jason, Katz, Gary J.
- 出版商: Packt Publishing
- 出版日期: 2023-07-21
- 售價: $2,200
- 貴賓價: 9.5 折 $2,090
- 語言: 英文
- 頁數: 328
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1801076715
- ISBN-13: 9781801076715
-
相關分類:
資訊安全
立即出貨 (庫存=1)
買這商品的人也買了...
-
實戰網路安全監控|入侵偵測與因應之道 (The Practice of Network Security Monitoring: Understanding Incident Detection and Response)$490$387 -
$281C++黑客編程揭秘與防範(第2版) -
$454黑客大曝光:工業控制系統安全 (Hacking Exposed Industrial Control Systems: ICS and SCADA Security Secrets & Solutions) -
$403黑客大曝光 : 惡意軟件和 Rootkit 安全, 2/e -
$1,710Functional Programming in C++: How to improve your C++ programs using functional techniques (Paperback) -
特洛伊木馬病毒程式設計:使用 Python$520$406 -
$454黑客攻防大曝光:社會工程學、電腦黑客攻防、移動黑客攻防技術揭秘 -
$301以太坊技術詳解與實戰 -
$305黑客攻防從入門到精通 -
Python GUI 程式設計:PyQt5 實戰$690$538 -
Hands-on Machine Learning for Cyber Security: Safeguard your system by making your machines intelligent using Python ecosystem$1,870$1,777 -
$1,663Rootkits and Bootkits: Reversing Modern Malware and Next Generation Threats -
不會 C 也是資安高手:用 Python 和駭客大戰三百回合$620$490 -
$2865G 與車聯網 — 基於移動通信的車聯網技術與智能網聯汽車 -
$3525G時代:什麼是5G,它將如何改變世界 -
最完整 5G 技術架構白皮書$780$616 -
The Modern Security Operations Center (Paperback)$2,200$2,090 -
駭客自首:極惡網路攻擊的內幕技巧$780$616 -
5G 來了!:生活變革、創業紅利、產業數位轉型,搶占全球2510億美元商機,人人皆可得利的未來,你準備好了嗎?$360$284 -
Kali Linux 滲透測試工具|花小錢做資安,你也是防駭高手, 3/e$880$695 -
Malware Analysis and Detection Engineering: A Comprehensive Approach to Detect and Analyze Modern Malware (Paperback)$3,230$3,069 -
Learn Enough JavaScript to Be Dangerous: A Tutorial Introduction to Programming with JavaScript$1,520$1,444 -
Learn Enough Python to Be Dangerous: Software Development, Flask Web Apps, and Beginning Data Science with Python (Paperback)$1,600$1,520 -
Intelligence-Driven Incident Response: Outwitting the Adversary 2nd Edition$2,185$2,070 -
一本精通 - Python 範例應用大全:Python 詳細語法教學 & 100+ 個 Python 範例$880$695
商品描述
Get to grips with the detection engineering lifecycle and transform internal and external threat intelligence into relevant detection controls to protect your organization
Purchase of the print or Kindle book includes a free PDF eBook
Key Features:
- Gain a comprehensive understanding of threat validation
- Leverage open source tools to test security detections
- Harness open source content to supplement detection and testing
Book Description:
Threat validation is an indispensable component of every security detection program, ensuring a healthy detection pipeline. This comprehensive detection engineering guide will serve as an introduction for those who are new to detection validation, providing valuable guidelines to swiftly bring you up to speed.
The book will show you how to apply the supplied frameworks to assess, test, and validate your detection program. It covers the entire life cycle of a detection, from creation to validation, with the help of real-world examples. Featuring hands-on tutorials, projects, and self-assessment questions, this guide will enable you to confidently validate the detections in your security program.
By the end of this book, you'll have developed the skills necessary to test your security detection program and strengthen your organization's security measures.
What You Will Learn:
- Become well versed in the detection engineering process
- Build a detection engineering test lab
- Discover how to maintain detections as code
- Find out how threat intelligence can be used to drive detection development
- Demonstrate the effectiveness of detection capabilities to business leadership
- Limit the attackers' ability to inflict damage by detecting malicious activity early
Who this book is for:
This book is for security analysts and engineers seeking to improve their organization's security posture by mastering the detection engineering lifecycle.
To get started with this book, you'll need a basic understanding of cybersecurity concepts, along with some experience with detection and alert capabilities.
商品描述(中文翻譯)
掌握偵測工程生命週期,將內部和外部威脅情報轉化為相關的偵測控制,以保護您的組織。
購買印刷版或Kindle書籍,即可免費獲得PDF電子書。
主要特點:
- 全面了解威脅驗證
- 利用開源工具測試安全偵測
- 利用開源內容補充偵測和測試
書籍描述:
威脅驗證是每個安全偵測計劃中不可或缺的組成部分,確保偵測管道的健康運作。這本全面的偵測工程指南將為那些對偵測驗證新手提供介紹,並提供有價值的指南,以快速提升您的能力。
本書將向您展示如何應用提供的框架來評估、測試和驗證您的偵測計劃。它涵蓋了偵測的整個生命週期,從創建到驗證,並提供了真實世界的示例。通過實踐教程、項目和自我評估問題,本指南將使您能夠自信地驗證安全計劃中的偵測。
通過閱讀本書,您將學習測試安全偵測計劃所需的技能,並加強組織的安全措施。
學到什麼:
- 熟悉偵測工程流程
- 構建偵測工程測試實驗室
- 發現如何將偵測保持為代碼
- 了解如何利用威脅情報推動偵測開發
- 向業務領導展示偵測能力的有效性
- 通過早期偵測惡意活動,限制攻擊者造成的損害能力
本書適合安全分析師和工程師,他們希望通過掌握偵測工程生命週期來改善組織的安全狀態。
要開始閱讀本書,您需要對網絡安全概念有基本的了解,並具備一些偵測和警報能力的經驗。
