Tuesday, January 08, 2013

Bejtlich's New Book: Planned for Summer Publication

Nearly ten years after I started writing my first book, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Tao of Network Security Monitoring, I'm pleased to announce that I just signed a contract to write a new book for No Starch titled Network Security Monitoring in Minutes.

From cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book proposal:

Network Security Monitoring in Minutes provides cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 tactics, techniques, and procedures for maximum enterprise defense in a minimum amount of time.

Network Security Monitoring (NSM) is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 collection, analysis, and escalation of indications and warnings to detect and respond to intrusions. Network Security Monitoring in Minutes teaches information technology and security staff how to leverage powerful NSM tools and concepts immediately.

Using open source software and vendor-neutral methods, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 author applies lessons he first began applying to military networks in 1998. After reading this book, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 audience will be able to integrate cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 same winning approaches to better defend his or her company’s data and networks.

Network Security Monitoring in Minutes is an important book because nearly all organizations operate a network. By connecting to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 Internet, cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365y expose cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir intellectual property, trade secrets, critical business processes, personally identifiable information (PII), and ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r sensitive information to attackers worldwide. Without cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 network level vigilance provided by this book, organizations will continue to be victimized for months, and in many cases years, before learning cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365y have been breached.

This book consists of cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 following chapters:

Chapter 1, Network Security Monitoring Rationale, explains why NSM matters and help readers gain cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 support needed to deploy NSM in cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir environment.

Chapter 2, Accessing Network Traffic, addresses cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 challenges and solutions surrounding physical access to network traffic.

Chapter 3, Sensor Deployment and Configuration, introduces Security Onion (SO), and explains how readers can install cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 software on spare hardware to gain an initial NSM capability at low or no cost.

Chapter 4, Tool Overview, guides cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 reader through cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 core SO tool set, focusing on those capabilities most likely to help handle digital intrusions.

Chapter 5, Network Security Monitoring Operations, shares cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 author’s experience building and leading a global Computer Incident Response Team (CIRT), such that readers can apply those lessons to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir own operations.

Chapter 6, Server-Side Compromise, is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 first NSM case study, wherein readers will learn how to apply NSM principles to identify and validate a compromise of an Internet-facing application.

Chapter 7, Client-Side Compromise, is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 second NSM case study, offering readers an example of a user being victimized by a client-side attack. NSM data will again identify and validate cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 compromise, prompting efficient incident response.

The Conclusion extends NSM principles beyond cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 enterprise into hosted and Cloud settings, offering future options for those environments.

The Appendix discusses tools that are not open source, but which may be helpful to those conducting NSM operations.

My goal is to finish this short book (roughly 220 pages) in time for publication at Black Hat this summer. Thank you to Pearson/Addison-Wesley for giving me cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 flexibility to write this complementary NSM book, and to No Starch for signing me to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365ir publishing house.

13 comments:

Unknown said...

Congratulations! Definitely looking forward to reading this one as well!

Anonymous said...

at last....

congrats!

Anonymous said...

For cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 love of god, when can I pre-order this?

Jeremy Hoel said...

Looking forward to an updated NSM book.. should be a great read!

Richard Bejtlich said...

Thanks everyone. Anonymous, I appreciate your interest, but I just signed cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 contract yesterday night. It will take No Starch a while to get details online. :)

Anonymous said...

@Richard Yeah, I guess so... When you said you stopped reading tech books, I figured you would likely be done writing cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365m as well. I'm glad to be wrong.

Congrats, and thanks! :)

Chris Buechler said...

I was also surprised to see this given your ocá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365r recent posts, but definitely glad. An updated NSM book is definitely needed. Looking forward to it!

w1resh4rk said...

Congrats, really can't wait to read it.

leBolide said...

Looking forward to it!

Anonymous said...

Shouldn't we start betting who from Bruins 2011 team is going to make it to cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 new book? Surely Lucic for cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 SO box.

RS said...

Gotta put cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 book on my wish list!

Anonymous said...

This sounds great. Far too few good books on this subject. Please try to incorporate what you consider to be cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 best open source visualization tools. This is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 most critical tool that is overlooked by most NSM pros in my opinion. Ironically it is cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 one tool that if implemented correctly can help initially alert cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 "average" IT Admin that cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365re is a problem. Then cá cược thể thao bet365_cách nạp tiền vào bet365_ đăng ký bet365 packet sniffers/log aggregators/parsers can be utilized to drill down to determine cause and effect. Regardless, this book will be added to my shelf.

rot26 said...

Great news Richard! Looking forward to this.