Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs

(ebook) (audiobook) (audiobook)

Autor:: Mostafa Yahia

+149 pkt

Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs Mostafa Yahia - okładka ebooka

Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs Mostafa Yahia - okładka audiobooka MP3

Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs Mostafa Yahia - okładka audiobooks CD

Wydawnictwo:: Packt Publishing (Z chęcią przeczytam książkę w języku polskim)
Ocena:: Bądź pierwszym, który oceni tę książkę
Stron:: 314
Dostępne formaty:: PDF

ePub

+149 pkt

Ebook

149,00 zł

Dodaj do koszyka lub Kup na prezent
Kup 1-kliknięciem

Przenieś na półkę

Do przechowalni

Effective threat investigation requires strong technical expertise, analytical skills, and a deep understanding of cyber threats and attacker techniques. It's a crucial skill for SOC analysts, enabling them to analyze different threats and identify security incident origins. This book provides insights into the most common cyber threats and various attacker techniques to help you hone your incident investigation skills.
The book begins by explaining phishing and email attack types and how to detect and investigate them, along with Microsoft log types such as Security, System, PowerShell, and their events. Next, you’ll learn how to detect and investigate attackers' techniques and malicious activities within Windows environments. As you make progress, you’ll find out how to analyze the firewalls, flows, and proxy logs, as well as detect and investigate cyber threats using various security solution alerts, including EDR, IPS, and IDS. You’ll also explore popular threat intelligence platforms such as VirusTotal, AbuseIPDB, and X-Force for investigating cyber threats and successfully build your own sandbox environment for effective malware analysis.
By the end of this book, you’ll have learned how to analyze popular systems and security appliance logs that exist in any environment and explore various attackers' techniques to detect and investigate them with ease.

Wybrane bestsellery

O autorze ebooka

Mostafa Yahia is a skilled and motivated threat investigator and hunter with a wealth of experience investigating and hunting down various cyber threats. He is a proven leader in building and leading cybersecurity-managed services such as SOC and threat-hunting services. Mostafa holds a bachelor’s degree in computer science, which he earned in 2016, and has furthered his education by earning multiple industry-recognized certifications, including GCFA, GCIH, CCNA, and IBM QRadar. In addition to his professional work, Mostafa also shares his knowledge through free courses and lessons on his YouTube channel. Currently, he serves as the senior lead for cyber defence services in an MSSP company, overseeing SOC, TH, DFIR, and CA services.

Ebooka "Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs" przeczytasz na:

czytnikach Inkbook, Kindle, Pocketbook, Onyx Boox i innych
systemach Windows, MacOS i innych

systemach Windows, Android, iOS, HarmonyOS
na dowolnych urządzeniach i aplikacjach obsługujących formaty: PDF, EPub, Mobi

Masz pytania? Zajrzyj do zakładki Pomoc »

Audiobooka "Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs" posłuchasz:

w aplikacji Ebookpoint na Android, iOS, HarmonyOs
na systemach Windows, MacOS i innych

na dowolnych urządzeniach
i aplikacjach obsługujących format MP3
(pliki spakowane w ZIP)

Masz pytania? Zajrzyj do zakładki Pomoc »

Kurs Video "Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs" zobaczysz:

Oceny i opinie klientów: Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs Mostafa Yahia (0) Weryfikacja opinii następuję na podstawie historii zamówień na koncie Użytkownika umieszczającego opinię. Użytkownik mógł otrzymać punkty za opublikowanie opinii uprawniające do uzyskania rabatu w ramach Programu Punktowego.

Szczegóły ebooka

Tytuł oryginału:: Effective Threat Investigation for SOC Analysts. The ultimate guide to examining various threats and attacker techniques using security logs
ISBN Ebooka:: 978-18-376-3875-8, 9781837638758
Data wydania ebooka:: 2023-08-25 Data wydania ebooka często jest dniem wprowadzenia tytułu do sprzedaży i może nie być równoznaczna z datą wydania książki papierowej. Dodatkowe informacje możesz znaleźć w darmowym fragmencie. Jeśli masz wątpliwości skontaktuj się z nami sklep@ebookpoint.pl.
Język publikacji:: angielski
Rozmiar pliku Pdf:: 12.7MB
Rozmiar pliku ePub:: 26.2MB

Kategorie

Kliknij, aby zgłosić błędnie przypisaną kategorię »

Informatyka » Hacking » Bezpieczeństwo systemów

Spis treści ebooka

1. Investigating Email Threats
2. Email Flow and Header Analysis
3. Introduction to Windows Event Logs
4. Tracking Accounts Login and Management
5. Investigating Suspicious Process Execution Using Windows Event Logs
6. Investigating PowerShell Event Logs
7. Investigating Persistence and Lateral Movement Using Windows Event Logs
8. Network Firewall Logs Analysis
9. Investigating Cyber Threats by Using the Firewall Logs
10. Web Proxy Logs Analysis
11. Investigating Suspicious Outbound Communications (C&C Communications) by Using Proxy Logs
12. Investigating External Threats
13. Investigating Network Flows and Security Solutions Alerts
14. Threat Intelligence in a SOC Analyst's Day
15. Malware Sandboxing – Building a Malware Sandbox

pokaż cały spis treści