Dig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security
Written by a former Microsoft security program manager, DEFCON «Forensics CTF» village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating system′s event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenario–based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities.
This book is based on the author′s experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity.
Learn to:
- Implement the Security Logging and Monitoring policy
- Dig into the Windows security auditing subsystem
- Understand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system
About the Author
Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference «Forensics CTF» village and has been a speaker at Microsoft′s Bluehat security conference. In addition, Andrei is an author of the «Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference» and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.
×
Сейчас вы находитесь в городе Москва
Выберите город, в который Вы хотите осуществить доставку
Мониторинг безопасности Windows: сценарии и шаблоны, автор: Мирошников Андрей
Доставка в
город Москва
: 16 июня
Основные характеристики
Товар из США
Доставим в Ваш город
Артикул:234941929100
Продавец:
textbooks_source
(36939)
Местонахождение:Columbia, US
Доставка до склада в США
Бесплатно
Мониторинг безопасности Windows: сценарии и шаблоны, автор: Мирошников Андрей — купить с доставкой в Россию и СНГ
Мониторинг безопасности Windows: сценарии и шаблоны, автор: Мирошников Андрей можно купить в нашем интернет-магазине с доставкой из Columbia, US в Россию и страны СНГ по цене 4390 руб.
Все товары из
категории «Словари и справочники» доставляются в соответствии с обозначенными правилами в разделе «Доставка».
Если у вас возникли вопросы по товару, оплате, гарантии или доставке до вашего населённого пункта — Закажите обратный звонок!.
Приобретая товар «Windows Security Monitoring: Scenarios and Patterns by Miroshnikov, Andrei» через SHOPOZZ, вы можете быть уверенны в том, что получите качественный продукт, предназначенный для продажи в Columbia, US.
Смотрите нас на
Секретные промокоды и доступы к зарубежным распродажам в нашей полезной рассылке
Вы успешно подписаны на рассылку!
Основной контент книги Windows Security Monitoring
Book duration 651 pages
0+
About the book
Go deep into Windows security tools to implement more robust protocols and processes Windows Security Monitoring goes beyond Windows admin and security certification guides to provide in-depth information for security professionals. Written by a Microsoft security program manager, DEFCON organizer and CISSP, this book digs deep into the underused tools that help you keep Windows systems secure. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful native tools, while scenario-based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event detection to incident response procedures and best practices, this book provides detailed information on all of the security tools your Windows system has to offer. Windows includes many native tools that can help IT professionals and security experts spot and remedy suspicious activities on servers, networks, and end-user computers. If you’re like many Windows pros, you’re probably not taking full advantage of these features. This book takes you deep into Windows’ underutilized built-in security tools to help you beef up your monitoring, detection, and response processes. Detect anomalous events and implement centralized alerting infrastructure Dig into the native Windows tools that enable robust security measures Understand the details of Powershell, Applocker, LogParser, and other tools Adopt effective incident response processes for various common scenarios Fully applicable to a range of Windows versions—back to Windows Vista and Windows Server 2008—this book is designed for real-world implementation. As the threats to your data grow more numerous by the day, it becomes ever more critical to use every security tool at your disposal. Windows Security Monitoring offers complete, expert guidance toward robust security with specialist-level use of powerful Windows tools.
Genres and tags
Log in, to rate the book and leave a review
Book «Windows Security Monitoring» — read online on the website. Leave comments and reviews, vote for your favorites.
Release date on Litres:
20 August 2019
Total number of pages:
651
Description
Dig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security
Written by a former Microsoft security program manager, DEFCON «Forensics CTF» village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating system′s event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenario–based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities.
This book is based on the author′s experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity.
Learn to:
- Implement the Security Logging and Monitoring policy
- Dig into the Windows security auditing subsystem
- Understand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system
About the Author
Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference «Forensics CTF» village and has been a speaker at Microsoft′s Bluehat security conference. In addition, Andrei is an author of the «Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference» and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.
About the Author
Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference «Forensics CTF» village and has been a speaker at Microsoft’s Bluehat security conference. In addition, Andrei is an author of the «Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference» and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.
| Author | : |
| Publisher | : John Wiley & Sons |
| Total Pages | : 652 |
| Release | : 2018-03-13 |
| ISBN-10 | : 9781119390893 |
| ISBN-13 | : 1119390893 |
| Rating | : 4/5 (893 Downloads) |
Book Synopsis Windows Security Monitoring by : Andrei Miroshnikov
Download or read book Windows Security Monitoring written by Andrei Miroshnikov and published by John Wiley & Sons. This book was released on 2018-03-13 with total page 652 pages. Available in PDF, EPUB and Kindle. Book excerpt: Dig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security Written by a former Microsoft security program manager, DEFCON «Forensics CTF» village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating system′s event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenario–based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities. This book is based on the author′s experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity. Learn to: Implement the Security Logging and Monitoring policy Dig into the Windows security auditing subsystem Understand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system About the Author Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference «Forensics CTF» village and has been a speaker at Microsoft′s Bluehat security conference. In addition, Andrei is an author of the «Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference» and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.
Windows Security Monitoring Related Books
Windows Security Monitoring
Authors: Andrei Miroshnikov
Categories: Computers
Type: BOOK — Published: 2018-03-13 — Publisher: John Wiley & Sons
DOWNLOAD EBOOK
Dig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security Written by a former Microsoft security prog
Mastering Windows Security
Authors: Cybellium
Categories: Computers
Type: BOOK — Published: 2023-09-26 — Publisher: Cybellium Ltd
DOWNLOAD EBOOK
Unveil the Secrets to Fortifying Windows Systems Against Cyber Threats Are you prepared to take a stand against the evolving landscape of cyber threats? «Master
Purple Team Strategies
Authors: David Routin
Categories: Computers
Type: BOOK — Published: 2022-06-24 — Publisher: Packt Publishing Ltd
DOWNLOAD EBOOK
Leverage cyber threat intelligence and the MITRE framework to enhance your prevention mechanisms, detection capabilities, and learn top adversarial simulation a
The Art of Software Security Assessment
Authors: Mark Dowd
Categories: Computers
Type: BOOK — Published: 2006-11-20 — Publisher: Pearson Education
DOWNLOAD EBOOK
The Definitive Insider’s Guide to Auditing Software Security This is one of the most detailed, sophisticated, and useful guides to software security auditing