{"product_id":"cybersecurity-isbn-9781118697115","title":"Cybersecurity","description":"\u003cp\u003e\u003cb\u003eA must-have, hands-on guide for working in the cybersecurity profession\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eCybersecurity involves preventative methods to protect information from attacks. It requires a thorough understanding of potential threats, such as viruses and other malicious code, as well as system vulnerability and security architecture. This essential book addresses cybersecurity strategies that include identity management, risk management, and incident management, and also serves as a detailed guide for anyone looking to enter the security profession. Doubling as the text for a cybersecurity course, it is also a useful reference for cybersecurity testing, IT test\/development, and system\/network administration.\u003c\/p\u003e \u003cul\u003e \u003cli\u003eCovers everything from basic network administration security skills through advanced command line scripting, tool customization, and log analysis skills\u003c\/li\u003e \u003cli\u003eDives deeper into such intense topics as wireshark\/tcpdump filtering, Google hacks, Windows\/Linux scripting, Metasploit command line, and tool customizations\u003c\/li\u003e \u003cli\u003eDelves into network administration for Windows, Linux, and VMware\u003c\/li\u003e \u003cli\u003eExamines penetration testing, cyber investigations, firewall configuration, and security tool customization\u003c\/li\u003e \u003cli\u003eShares techniques for cybersecurity testing, planning, and reporting\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003e\u003ci\u003eCybersecurity: Managing Systems, Conducting Testing, and Investigating Intrusions\u003c\/i\u003e is a comprehensive and authoritative look at the critical topic of cybersecurity from start to finish.\u003c\/p\u003e \u003cp\u003eIntroduction xix\u003c\/p\u003e \u003cp\u003e\u003cb\u003ePart I Cyber Network Security Concepts 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1 Executive Summary 3\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWhy Start with Antipatterns? 4\u003c\/p\u003e \u003cp\u003eSecurity Architecture 5\u003c\/p\u003e \u003cp\u003eAntipattern: Signature-Based Malware Detection versus Polymorphic Threats 6\u003c\/p\u003e \u003cp\u003eRefactored Solution: Reputational-, Behavioral-, and Entropy-Based Malware Detection 6\u003c\/p\u003e \u003cp\u003eAntipattern: Document-Driven Certification and Accreditation 7\u003c\/p\u003e \u003cp\u003eAntipattern: Proliferating IA Standards with No Proven Benefits 8\u003c\/p\u003e \u003cp\u003eAntipattern: Policy-Driven Security Certifications Do Not Address the Threat 10\u003c\/p\u003e \u003cp\u003eRefactored Solution: Security Training Roadmap 10\u003c\/p\u003e \u003cp\u003eSummary 13\u003c\/p\u003e \u003cp\u003eAssignments 14\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2 The Problems: Cyber Antipatterns 15\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eAntipatterns Concept 16\u003c\/p\u003e \u003cp\u003eForces in Cyber Antipatterns 16\u003c\/p\u003e \u003cp\u003eCyber Antipattern Templates 18\u003c\/p\u003e \u003cp\u003eMicro-Antipattern Templates 18\u003c\/p\u003e \u003cp\u003eFull Cyber Antipattern Template 19\u003c\/p\u003e \u003cp\u003eCybersecurity Antipattern Catalog 20\u003c\/p\u003e \u003cp\u003eCan’t Patch Dumb 21\u003c\/p\u003e \u003cp\u003eUnpatched Applications 23\u003c\/p\u003e \u003cp\u003eNever Read the Logs 25\u003c\/p\u003e \u003cp\u003eNetworks Always Play by the Rules 26\u003c\/p\u003e \u003cp\u003eHard on the Outside, Gooey in the Middle 28\u003c\/p\u003e \u003cp\u003eWebify Everything 30\u003c\/p\u003e \u003cp\u003eNo Time for Security 32\u003c\/p\u003e \u003cp\u003eSummary 34\u003c\/p\u003e \u003cp\u003eAssignments 35\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3 Enterprise Security Using the Zachman Framework 37\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWhat Is Architecture? Why Do We Need It? 37\u003c\/p\u003e \u003cp\u003eEnterprises Are Complex and Changing 38\u003c\/p\u003e \u003cp\u003eThe Zachman Framework for Enterprise Architecture 38\u003c\/p\u003e \u003cp\u003ePrimitive Models versus Composite Models 40\u003c\/p\u003e \u003cp\u003eHow Does the Zachman Framework Help with Cybersecurity? 40\u003c\/p\u003e \u003cp\u003eEveryone Has Their Own Specifications 41\u003c\/p\u003e \u003cp\u003eThe Goldmine Is in Row 2 42\u003c\/p\u003e \u003cp\u003eFrameworks for Row 3 42\u003c\/p\u003e \u003cp\u003eArchitectural Problem Solving Patterns 43\u003c\/p\u003e \u003cp\u003eBusiness Question Analysis 44\u003c\/p\u003e \u003cp\u003eDocument Mining 45\u003c\/p\u003e \u003cp\u003eHierarchy Formation 46\u003c\/p\u003e \u003cp\u003eEnterprise Workshop 52\u003c\/p\u003e \u003cp\u003eMatrix Mining 53\u003c\/p\u003e \u003cp\u003eNominal Group Technique 54\u003c\/p\u003e \u003cp\u003eMinipatterns for Problem Solving Meetings 55\u003c\/p\u003e \u003cp\u003eSummary 56\u003c\/p\u003e \u003cp\u003eAssignments 57\u003c\/p\u003e \u003cp\u003e\u003cb\u003ePart II Cyber Network Security Hands-On 59\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4 Network Administration for Security Professionals 61\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eManaging Administrator and Root Accounts 62\u003c\/p\u003e \u003cp\u003eWindows 63\u003c\/p\u003e \u003cp\u003eLinux and Unix 64\u003c\/p\u003e \u003cp\u003eVMware 64\u003c\/p\u003e \u003cp\u003eInstalling Hardware 64\u003c\/p\u003e \u003cp\u003eRe-Imaging Operating Systems 67\u003c\/p\u003e \u003cp\u003eWindows 67\u003c\/p\u003e \u003cp\u003eLinux 68\u003c\/p\u003e \u003cp\u003eVMware 69\u003c\/p\u003e \u003cp\u003eOther OSes 69\u003c\/p\u003e \u003cp\u003eBurning and Copying CDs and DVDs 69\u003c\/p\u003e \u003cp\u003eWindows 70\u003c\/p\u003e \u003cp\u003eLinux 70\u003c\/p\u003e \u003cp\u003eVMware 71\u003c\/p\u003e \u003cp\u003eInstalling System Protection\/Anti-Malware 71\u003c\/p\u003e \u003cp\u003eWindows 74\u003c\/p\u003e \u003cp\u003eLinux 74\u003c\/p\u003e \u003cp\u003eVMware 75\u003c\/p\u003e \u003cp\u003eSetting Up Networks 75\u003c\/p\u003e \u003cp\u003eWindows 76\u003c\/p\u003e \u003cp\u003eLinux 77\u003c\/p\u003e \u003cp\u003eVMware 78\u003c\/p\u003e \u003cp\u003eOther OSes 79\u003c\/p\u003e \u003cp\u003eInstalling Applications and Archiving 80\u003c\/p\u003e \u003cp\u003eWindows 80\u003c\/p\u003e \u003cp\u003eLinux 81\u003c\/p\u003e \u003cp\u003eVMware 82\u003c\/p\u003e \u003cp\u003eOther OSes 82\u003c\/p\u003e \u003cp\u003eCustomizing System Management Controls and Settings 82\u003c\/p\u003e \u003cp\u003eWindows 82\u003c\/p\u003e \u003cp\u003eLinux 83\u003c\/p\u003e \u003cp\u003eVMware 83\u003c\/p\u003e \u003cp\u003eOther OSes 83\u003c\/p\u003e \u003cp\u003eManaging Remote Login 83\u003c\/p\u003e \u003cp\u003eWindows 84\u003c\/p\u003e \u003cp\u003eLinux 84\u003c\/p\u003e \u003cp\u003eVMware 84\u003c\/p\u003e \u003cp\u003eManaging User Administration 85\u003c\/p\u003e \u003cp\u003eWindows 85\u003c\/p\u003e \u003cp\u003eLinux 86\u003c\/p\u003e \u003cp\u003eVMware 86\u003c\/p\u003e \u003cp\u003eManaging Services 87\u003c\/p\u003e \u003cp\u003eWindows 87\u003c\/p\u003e \u003cp\u003eLinux 88\u003c\/p\u003e \u003cp\u003eOther OSes 88\u003c\/p\u003e \u003cp\u003eMounting Disks 89\u003c\/p\u003e \u003cp\u003eWindows 89\u003c\/p\u003e \u003cp\u003eLinux 90\u003c\/p\u003e \u003cp\u003eVMware 90\u003c\/p\u003e \u003cp\u003eMoving Data Between Systems on Networks 90\u003c\/p\u003e \u003cp\u003eWindows File Sharing 91\u003c\/p\u003e \u003cp\u003eSecure File Transfer Protocol (SFTP) 91\u003c\/p\u003e \u003cp\u003eVMware 91\u003c\/p\u003e \u003cp\u003eOther Techniques 92\u003c\/p\u003e \u003cp\u003eConverting Text Files Between OSes 92\u003c\/p\u003e \u003cp\u003eMaking Backup Disks 92\u003c\/p\u003e \u003cp\u003eFormatting Disks 93\u003c\/p\u003e \u003cp\u003eWindows 93\u003c\/p\u003e \u003cp\u003eLinux 94\u003c\/p\u003e \u003cp\u003eConfiguring Firewalls 94\u003c\/p\u003e \u003cp\u003eConverting and Migrating VMs 97\u003c\/p\u003e \u003cp\u003eAdditional Network Administration Knowledge 99\u003c\/p\u003e \u003cp\u003eSummary 99\u003c\/p\u003e \u003cp\u003eAssignments 101\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5 Customizing BackTrack and Security Tools 103\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eCreating and Running BackTrack Images 104\u003c\/p\u003e \u003cp\u003eCustomizing BackTrack with VM 105\u003c\/p\u003e \u003cp\u003eUpdating and Upgrading BackTrack and Pen Test Tools 106\u003c\/p\u003e \u003cp\u003eAdding Windows to BackTrack with VMware 106\u003c\/p\u003e \u003cp\u003eDisk Partitioning 107\u003c\/p\u003e \u003cp\u003ePerforming Multi-Boot Disk Setup 108\u003c\/p\u003e \u003cp\u003eResults of the New Pen Test Architecture 110\u003c\/p\u003e \u003cp\u003eAlternative Pen Test Architectures 111\u003c\/p\u003e \u003cp\u003eLicensing Challenges for Network Administrators 111\u003c\/p\u003e \u003cp\u003ePerpetual License 111\u003c\/p\u003e \u003cp\u003eAnnual License 111\u003c\/p\u003e \u003cp\u003eTime Limited per Instance License 112\u003c\/p\u003e \u003cp\u003eTime Hold Renewal License 112\u003c\/p\u003e \u003cp\u003eSummary 112\u003c\/p\u003e \u003cp\u003eAssignments 113\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 6 Protocol Analysis and Network Programming 115\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eNetworking Theory and Practice 116\u003c\/p\u003e \u003cp\u003eFrequently Encountered Network Protocols 117\u003c\/p\u003e \u003cp\u003eARP and Layer 2 Headers 118\u003c\/p\u003e \u003cp\u003eIP Header 120\u003c\/p\u003e \u003cp\u003eICMP Header 120\u003c\/p\u003e \u003cp\u003eUDP Header 121\u003c\/p\u003e \u003cp\u003eTCP Header 122\u003c\/p\u003e \u003cp\u003eNetwork Programming: Bash 124\u003c\/p\u003e \u003cp\u003eBash for Basic Network Programming 125\u003c\/p\u003e \u003cp\u003eBash Network Sweep: Packaging a Script 126\u003c\/p\u003e \u003cp\u003eBash Network Scanning Using While 127\u003c\/p\u003e \u003cp\u003eBash Banner Grabbing 128\u003c\/p\u003e \u003cp\u003eNetwork Programming: Windows Command-Line Interface (CLI) 130\u003c\/p\u003e \u003cp\u003eWindows Command Line: Network Programming Using For \/L 131\u003c\/p\u003e \u003cp\u003eWindows Command Line: Password Attack Using For \/F 132\u003c\/p\u003e \u003cp\u003ePython Programming: Accelerated Network Scanning 133\u003c\/p\u003e \u003cp\u003eSummary 136\u003c\/p\u003e \u003cp\u003eAssignments 137\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 7 Reconnaissance, Vulnerability Assessment, and Cyber Testing 139\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eTypes of Cybersecurity Evaluations 139\u003c\/p\u003e \u003cp\u003eBody of Evidence (BOE) Review 140\u003c\/p\u003e \u003cp\u003ePenetration Tests 141\u003c\/p\u003e \u003cp\u003eVulnerability Assessment 141\u003c\/p\u003e \u003cp\u003eSecurity Controls Audit 141\u003c\/p\u003e \u003cp\u003eSoftware Inspection 141\u003c\/p\u003e \u003cp\u003eIterative\/Incremental Testing 142\u003c\/p\u003e \u003cp\u003eUnderstanding the Cybersecurity Testing Methodology 142\u003c\/p\u003e \u003cp\u003eReconnaissance 144\u003c\/p\u003e \u003cp\u003eNetwork and Port Scanning 150\u003c\/p\u003e \u003cp\u003ePolicy Scanning 153\u003c\/p\u003e \u003cp\u003eVulnerability Probes and Fingerprinting 155\u003c\/p\u003e \u003cp\u003eTest Planning and Reporting 159\u003c\/p\u003e \u003cp\u003eSummary 162\u003c\/p\u003e \u003cp\u003eAssignments 163\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 8 Penetration Testing 165\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eForms of Cyber Attacks 166\u003c\/p\u003e \u003cp\u003eBuffer Overflows 166\u003c\/p\u003e \u003cp\u003eCommand Injection Attacks 167\u003c\/p\u003e \u003cp\u003eSQL Injection Attacks 167\u003c\/p\u003e \u003cp\u003eNetwork Penetration 167\u003c\/p\u003e \u003cp\u003eCommercial Pen Testing Tools 170\u003c\/p\u003e \u003cp\u003eUsing IMPACT 170\u003c\/p\u003e \u003cp\u003eUsing CANVAS 171\u003c\/p\u003e \u003cp\u003eUsing Netcat to Create Connections and Move Data and Binaries 172\u003c\/p\u003e \u003cp\u003eUsing Netcat to Create Relays and Pivots 173\u003c\/p\u003e \u003cp\u003eUsing SQL Injection and Cross-Site Techniques to Perform Web Application and Database Attacks 175\u003c\/p\u003e \u003cp\u003eCollecting User Identities with Enumeration and Hash Grabbing 177\u003c\/p\u003e \u003cp\u003eEnumeration and Hash Grabbing on Windows 178\u003c\/p\u003e \u003cp\u003eEnumeration and Hash Grabbing on Linux 179\u003c\/p\u003e \u003cp\u003ePassword Cracking 179\u003c\/p\u003e \u003cp\u003eJohn the Ripper 181\u003c\/p\u003e \u003cp\u003eRainbow Tables 181\u003c\/p\u003e \u003cp\u003eCain \u0026amp; Abel 181\u003c\/p\u003e \u003cp\u003ePrivilege Escalation 182\u003c\/p\u003e \u003cp\u003eFinal Malicious Phases 183\u003c\/p\u003e \u003cp\u003eBackdoors 183\u003c\/p\u003e \u003cp\u003eEntrenchment 184\u003c\/p\u003e \u003cp\u003eHidden Files 184\u003c\/p\u003e \u003cp\u003eRootkits 184\u003c\/p\u003e \u003cp\u003eRootkit Removal 185\u003c\/p\u003e \u003cp\u003eSummary 185\u003c\/p\u003e \u003cp\u003eAssignments 187\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 9 Cyber Network Defense Using Advanced Log Analysis 189\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction to Cyber Network Defense 190\u003c\/p\u003e \u003cp\u003eGeneral Methods and Tools for Cyber Investigations 191\u003c\/p\u003e \u003cp\u003eObservation 192\u003c\/p\u003e \u003cp\u003eHypothesis 192\u003c\/p\u003e \u003cp\u003eEvaluation 193\u003c\/p\u003e \u003cp\u003eContinuous Cyber Investigation Strategy 193\u003c\/p\u003e \u003cp\u003eA Summary of the Cyber Investigation Process 195\u003c\/p\u003e \u003cp\u003eNetwork Monitoring 197\u003c\/p\u003e \u003cp\u003eThe daycap script 199\u003c\/p\u003e \u003cp\u003eThe pscap Script 200\u003c\/p\u003e \u003cp\u003eText Log Analysis 200\u003c\/p\u003e \u003cp\u003eThe snortcap Script 201\u003c\/p\u003e \u003cp\u003eThe headcap Script 201\u003c\/p\u003e \u003cp\u003eThe statcap Script 202\u003c\/p\u003e \u003cp\u003eThe hostcap Script 202\u003c\/p\u003e \u003cp\u003eThe alteripcap Script 203\u003c\/p\u003e \u003cp\u003eThe orgcap Script 204\u003c\/p\u003e \u003cp\u003eThe iporgcap Script 205\u003c\/p\u003e \u003cp\u003eThe archcap Script 205\u003c\/p\u003e \u003cp\u003eBinary Log Analysis 206\u003c\/p\u003e \u003cp\u003eAdvanced Wireshark Filters 206\u003c\/p\u003e \u003cp\u003eData Carving 207\u003c\/p\u003e \u003cp\u003eAdvanced tcpdump Filtering and Techniques 208\u003c\/p\u003e \u003cp\u003eAnalyzing Beacons 209\u003c\/p\u003e \u003cp\u003eReporting Cyber Investigations 210\u003c\/p\u003e \u003cp\u003eElimination of Cyber Threats 211\u003c\/p\u003e \u003cp\u003eIntrusion Discovery on Windows 214\u003c\/p\u003e \u003cp\u003eSummary 215\u003c\/p\u003e \u003cp\u003eAssignments 216\u003c\/p\u003e \u003cp\u003e\u003cb\u003ePart III Cyber Network Application Domains 217\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 10 Cybersecurity for End Users, Social Media, and Virtual Worlds 219\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eDoing an Ego Search 219\u003c\/p\u003e \u003cp\u003eProtecting Laptops, PCs, and Mobile Devices 220\u003c\/p\u003e \u003cp\u003eStaying Current with Anti-Malware and Software Updates 222\u003c\/p\u003e \u003cp\u003eManaging Passwords 223\u003c\/p\u003e \u003cp\u003eGuarding against Drive-By Malware 224\u003c\/p\u003e \u003cp\u003eStaying Safe with E‐mail 225\u003c\/p\u003e \u003cp\u003eSecurely Banking and Buying Online 226\u003c\/p\u003e \u003cp\u003eUnderstanding Scareware and Ransomware 227\u003c\/p\u003e \u003cp\u003eIs Your Machine p0wned? 227\u003c\/p\u003e \u003cp\u003eBeing Careful with Social Media 228\u003c\/p\u003e \u003cp\u003eStaying Safe in Virtual Worlds 229\u003c\/p\u003e \u003cp\u003eSummary 230\u003c\/p\u003e \u003cp\u003eAssignments 231\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 11 Cybersecurity Essentials for Small Business 233\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eInstall Anti-Malware Protection 234\u003c\/p\u003e \u003cp\u003eUpdate Operating Systems 234\u003c\/p\u003e \u003cp\u003eUpdate Applications 235\u003c\/p\u003e \u003cp\u003eChange Default Passwords 235\u003c\/p\u003e \u003cp\u003eEducate Your End Users 236\u003c\/p\u003e \u003cp\u003eSmall Enterprise System Administration 236\u003c\/p\u003e \u003cp\u003eWireless Security Basics for Small Business 237\u003c\/p\u003e \u003cp\u003eTips for Apple Macintosh Users 238\u003c\/p\u003e \u003cp\u003eSummary 239\u003c\/p\u003e \u003cp\u003eAssignments 239\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 12 Large Enterprise Cybersecurity: Data Centers and Clouds 241\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eCritical Security Controls 242\u003c\/p\u003e \u003cp\u003eScanning Enterprise IP Address Range (Critical Control 1) 243\u003c\/p\u003e \u003cp\u003eDrive-By Malware (Critical Controls 2 \u0026amp; 3) 244\u003c\/p\u003e \u003cp\u003eUnpatched Applications in Large Enterprises (Critical Controls 2 \u0026amp; 4) 246\u003c\/p\u003e \u003cp\u003eInternal Pivot from Compromised Machines (Critical Controls 2 \u0026amp; 10) 247\u003c\/p\u003e \u003cp\u003eWeak System Configurations (Critical Controls 3 \u0026amp; 10) 248\u003c\/p\u003e \u003cp\u003eUnpatched Systems (Critical Controls 4 \u0026amp; 5) 250\u003c\/p\u003e \u003cp\u003eLack of Security Improvement (Critical Controls 4, 5, 11, \u0026amp; 20) 250\u003c\/p\u003e \u003cp\u003eVulnerable Web Applications and Databases (Critical Controls 6 \u0026amp; 20) 251\u003c\/p\u003e \u003cp\u003eWireless Vulnerability (Critical Control 7) 252\u003c\/p\u003e \u003cp\u003eSocial Engineering (Critical Controls 9, 12, \u0026amp; 16) 253\u003c\/p\u003e \u003cp\u003eTemporary Open Ports (Critical Controls 10 \u0026amp; 13) 254\u003c\/p\u003e \u003cp\u003eWeak Network Architectures (Critical Controls 13 \u0026amp; 19) 255\u003c\/p\u003e \u003cp\u003eLack of Logging and Log Reviews (Critical Control 14) 256\u003c\/p\u003e \u003cp\u003eLack of Risk Assessment and Data Protection (Critical Controls 15 \u0026amp; 17) 257\u003c\/p\u003e \u003cp\u003eData Loss via Undetected Exfiltration (Critical Control 17) 259\u003c\/p\u003e \u003cp\u003ePoor Incident Response — APT (Critical Control 18) 260\u003c\/p\u003e \u003cp\u003eCloud Security 261\u003c\/p\u003e \u003cp\u003eHow Do Clouds Form? How Do Clouds Work? 262\u003c\/p\u003e \u003cp\u003eStovepiped Widgets in the Cloud 263\u003c\/p\u003e \u003cp\u003eSpecial Security Implications 264\u003c\/p\u003e \u003cp\u003eConsolidation into Clouds Can Magnify Risks 264\u003c\/p\u003e \u003cp\u003eClouds Require Stronger Trust Relationships 264\u003c\/p\u003e \u003cp\u003eClouds Change Security Assumptions 265\u003c\/p\u003e \u003cp\u003eCloud Indexing Changes Security Semantics 265\u003c\/p\u003e \u003cp\u003eData Mashups Increase Data Sensitivity 265\u003c\/p\u003e \u003cp\u003eCloud Security Technology Maturity 266\u003c\/p\u003e \u003cp\u003eNew Governance and Quality Assurance for Cloud Computing 266\u003c\/p\u003e \u003cp\u003eSummary 267\u003c\/p\u003e \u003cp\u003eAssignments 268\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 13 Healthcare Information Technology Security 269\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHipaa 270\u003c\/p\u003e \u003cp\u003eHealthcare Risk Assessment 270\u003c\/p\u003e \u003cp\u003eHealthcare Records Management 271\u003c\/p\u003e \u003cp\u003eHealthcare IT and the Judicial Process 272\u003c\/p\u003e \u003cp\u003eData Loss 272\u003c\/p\u003e \u003cp\u003eManaging Logs in Healthcare Organizations 273\u003c\/p\u003e \u003cp\u003eAuthentication and Access Control 274\u003c\/p\u003e \u003cp\u003eSummary 275\u003c\/p\u003e \u003cp\u003eAssignments 276\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 14 Cyber Warfare: An Architecture for Deterrence 277\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eIntroduction to Cyber Deterrence 278\u003c\/p\u003e \u003cp\u003eCyber Warfare 278\u003c\/p\u003e \u003cp\u003eComprehensive National Cybersecurity Initiative 279\u003c\/p\u003e \u003cp\u003eMethodology and Assumptions 280\u003c\/p\u003e \u003cp\u003eCyber Deterrence Challenges 283\u003c\/p\u003e \u003cp\u003eLegal and Treaty Assumptions 284\u003c\/p\u003e \u003cp\u003eCyber Deterrence Strategy 286\u003c\/p\u003e \u003cp\u003eReference Model 290\u003c\/p\u003e \u003cp\u003eSolution Architecture 291\u003c\/p\u003e \u003cp\u003eArchitectural Prototypes 296\u003c\/p\u003e \u003cp\u003eBaseline Code: Threaded Scanning 297\u003c\/p\u003e \u003cp\u003eBotnet for Distributed Scanning 298\u003c\/p\u003e \u003cp\u003ePerformance Benchmarks 300\u003c\/p\u003e \u003cp\u003eDeterministic Models of Performance 302\u003c\/p\u003e \u003cp\u003eProjections for Military Botnets 303\u003c\/p\u003e \u003cp\u003eSummary 304\u003c\/p\u003e \u003cp\u003eAssignments 305\u003c\/p\u003e \u003cp\u003eGlossary 307\u003c\/p\u003e \u003cp\u003eBibliography 317\u003c\/p\u003e \u003cp\u003eIndex 323\u003c\/p\u003e  \u003cp\u003e\u003cb\u003eThomas J. Mowbray,\u003c\/b\u003e \u003cb\u003ePhD,\u003c\/b\u003e holds gold-level certification from the SANS Institute in network penetration and ethical hacking. Dr. Mowbray, who has earned a doctorate in computer science, has co-authored five other professional books, including Wiley's bestseller \u003ci\u003eAntipatterns: Refactoring Software, Architectures, and Projects in Crisis\u003c\/i\u003e. After founding the Northrup Grumman Cyber Warfare Community of Practice, Dr. Mowbray joined the Certification and Accreditation Team (an elite cybersecurity test group) as their network administrator, security tools customizer, and hands-on penetration tester. At the time of writing, Dr. Mowbray is the Chief Enterprise Architect of The Ohio State University.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eYour organization is probably under attack right now.\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWhat are you doing about it?\u003c\/p\u003e \u003cp\u003eCyber crime is perhaps the fastest-growing crime category, increasing by as much as 300 percent each year. Your organization is undoubtedly under attack at this very moment.\u003c\/p\u003e \u003cp\u003eThis book looks at security systemically. Beginning with the use of antipatterns and moving through improvements in security architecture, customizing tools, effective pen testing, and network monitoring, it demonstrates how to build security into your systems. Whether you're dealing with a small business or a major enterprise, you'll learn how to create and maintain cybersecurity that works.\u003c\/p\u003e \u003cul\u003e \u003cli\u003eExamine a range of common antipatterns and their refactored solutions\u003c\/li\u003e \u003cli\u003eEnsure protection of Linux as well as Windows environments\u003c\/li\u003e \u003cli\u003eLearn specific tools and protocols for securing healthcare IT\u003c\/li\u003e \u003cli\u003eUse the exercises at the end of each chapter to improve your understanding\u003c\/li\u003e \u003cli\u003eEducate your staff with a cybersecurity course built on this guide\u003c\/li\u003e \u003cli\u003eLearn how to create, use, and migrate virtual machines for testing\u003c\/li\u003e \u003cli\u003eUnderstand how cloud computing affects enterprise security\u003c\/li\u003e \u003cli\u003eCustomize BackTrack Linux test discs with advanced tools\u003c\/li\u003e \u003cli\u003eDive deeper into intense topics such as advanced Wireshark\/tcpdump filtering, Windows\/Linux\/Python network programming, and invoking automated Metasploit attacks from operating system command lines and scripts\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003eVisit www.wiley.com\/go\/cybersecurity for a custom course syllabus, PowerPoint slides, and test bank, as well as downloadable custom scripts for Advanced Log Analysis\u003c\/p\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47989019607269,"sku":"NP9781118697115","price":60.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781118697115.jpg?v=1761782462","url":"https:\/\/k12savings.com\/es\/products\/cybersecurity-isbn-9781118697115","provider":"K12savings","version":"1.0","type":"link"}