| 000 -LEADER |
|---|
| fixed length control field |
06217nam a22003495i 4500 |
| 001 - CONTROL NUMBER |
|---|
| control field |
20839464 |
| 003 - CONTROL NUMBER IDENTIFIER |
|---|
| control field |
CITU |
| 005 - DATE AND TIME OF LATEST TRANSACTION |
|---|
| control field |
20230216154349.0 |
| 007 - PHYSICAL DESCRIPTION FIXED FIELD--GENERAL INFORMATION |
|---|
| fixed length control field |
cr an aaaaa |
| 008 - FIXED-LENGTH DATA ELEMENTS--GENERAL INFORMATION |
|---|
| fixed length control field |
190205s2019 inu 000 0 eng |
| 010 ## - LIBRARY OF CONGRESS CONTROL NUMBER |
|---|
| LC control number |
2019933354 |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER |
|---|
| International Standard Book Number |
9781119552963 |
| Qualifying information |
(ebook) |
| 040 ## - CATALOGING SOURCE |
|---|
| Original cataloging agency |
DLC |
| Language of cataloging |
eng |
| Description conventions |
rda |
| Transcribing agency |
DLC |
| 041 ## - LANGUAGE CODE |
|---|
| Language code of text/sound track or separate title |
eng. |
| 042 ## - AUTHENTICATION CODE |
|---|
| Authentication code |
pcc |
| 082 ## - DEWEY DECIMAL CLASSIFICATION NUMBER |
|---|
| Classification number |
005.8 |
| 100 1# - MAIN ENTRY--PERSONAL NAME |
|---|
| Personal name |
Tanner, Nadean. |
| 245 10 - TITLE STATEMENT |
|---|
| Title |
Cybersecurity blue team toolkit / |
| Statement of responsibility, etc. |
Nadean Tanner. |
| 263 ## - PROJECTED PUBLICATION DATE |
|---|
| Projected publication date |
1903 |
| 264 #1 - PRODUCTION, PUBLICATION, DISTRIBUTION, MANUFACTURE, AND COPYRIGHT NOTICE |
|---|
| Place of production, publication, distribution, manufacture |
Indianapolis, IN : |
| Name of producer, publisher, distributor, manufacturer |
John Wiley and Sons, |
| Date of production, publication, distribution, manufacture, or copyright notice |
2019. |
| 300 ## - PHYSICAL DESCRIPTION |
|---|
| Extent |
1 online resource |
| 336 ## - CONTENT TYPE |
|---|
| Content type term |
text |
| Content type code |
txt |
| Source |
rdacontent |
| 337 ## - MEDIA TYPE |
|---|
| Media type term |
computer |
| Media type code |
n |
| Source |
rdamedia |
| 338 ## - CARRIER TYPE |
|---|
| Carrier type term |
online resource |
| Carrier type code |
nc |
| Source |
rdacarrier |
| 500 ## - GENERAL NOTE |
|---|
| General note |
ABOUT THE AUTHOR<br/>Nadean H. Tanner has been in the technology industry for over 20 years in a variety of positions from marketing to training to web development to hardware. She has worked in academia as an IT director and a postgraduate technology instructor. She has also been a trainer and consultant in advanced cybersecurity for Fortune 500 companies as well as the U.S. Department of Defense. |
| 505 ## - FORMATTED CONTENTS NOTE |
|---|
| Formatted contents note |
TABLE OF CONTENTS<br/>Foreword xxi<br/><br/>Introduction xxiii<br/><br/>Chapter 1 Fundamental Networking and Security Tools 1<br/><br/>Ping 1<br/><br/>IPConfig 4<br/><br/>NSLookup 7<br/><br/>Tracert 9<br/><br/>NetStat 10<br/><br/>PuTTY 14<br/><br/>Chapter 2 Troubleshooting Microsoft Windows 17<br/><br/>RELI 18<br/><br/>PSR 19<br/><br/>PathPing 21<br/><br/>MTR 23<br/><br/>Sysinternals 24<br/><br/>The Legendary God Mode 28<br/><br/>Chapter 3 Nmap—The Network Mapper 31<br/><br/>Network Mapping 32<br/><br/>Port Scanning 34<br/><br/>Services Running 36<br/><br/>Operating Systems 38<br/><br/>Zenmap 39<br/><br/>Chapter 4 Vulnerability Management 43<br/><br/>Managing Vulnerabilities 43<br/><br/>OpenVAS 46<br/><br/>Nexpose Community 50<br/><br/>Chapter 5 Monitoring with OSSEC 57<br/><br/>Log-Based Intrusion Detection Systems 57<br/><br/>Agents 61<br/><br/>Adding an Agent 63<br/><br/>Extracting the Key for an Agent 64<br/><br/>Removing an Agent 64<br/><br/>Log Analysis 65<br/><br/>Chapter 6 Protecting Wireless Communication 67<br/><br/>802.11 67<br/><br/>inSSIDer 70<br/><br/>Wireless Network Watcher 71<br/><br/>Hamachi 72<br/><br/>Tor 78<br/><br/>Chapter 7 Wireshark 83<br/><br/>Wireshark 83<br/><br/>OSI Model 86<br/><br/>Capture 89<br/><br/>Filters and Colors 92<br/><br/>Inspection 93<br/><br/>Chapter 8 Access Management 97<br/><br/>AAA 98<br/><br/>Least Privilege 99<br/><br/>Single Sign-On 101<br/><br/>JumpCloud 103<br/><br/>Chapter 9 Managing Logs 109<br/><br/>Windows Event Viewer 110<br/><br/>Windows PowerShell 112<br/><br/>BareTail 116<br/><br/>Syslog 117<br/><br/>SolarWinds Kiwi 120<br/><br/>Chapter 10 Metasploit 125<br/><br/>Reconnaissance 127<br/><br/>Installation 128<br/><br/>Gaining Access 135<br/><br/>Metasploitable2 139<br/><br/>Vulnerable Web Services 144<br/><br/>Meterpreter 146<br/><br/>Chapter 11 Web Application Security 147<br/><br/>Web Development 148<br/><br/>Information Gathering 151<br/><br/>DNS 153<br/><br/>Defense in Depth 155<br/><br/>Burp Suite 156<br/><br/>Chapter 12 Patch and Configuration Management 165<br/><br/>Patch Management 166<br/><br/>Configuration Management 173<br/><br/>Clonezilla Live 179<br/><br/>Chapter 13 Securing OSI Layer 8 187<br/><br/>Human Nature 188<br/><br/>Human Attacks 192<br/><br/>Education 193<br/><br/>The Social Engineer Toolkit 195<br/><br/>Chapter 14 Kali Linux 205<br/><br/>Virtualization 206<br/><br/>Optimizing Kali Linux 219<br/><br/>Using Kali Linux Tools 221<br/><br/>Maltego 222<br/><br/>Recon-ng 223<br/><br/>Sparta 225<br/><br/>MacChanger 225<br/><br/>Nikto 226<br/><br/>Kismet 227<br/><br/>WiFite 228<br/><br/>John the Ripper 229<br/><br/>Hashcat 230<br/><br/>Chapter 15 CISv7 Controls and Best Practices 235<br/><br/>CIS Basic Controls—The Top Six 236<br/><br/>Inventory and Control of Hardware Assets 236<br/><br/>Inventory and Control of Software Assets 238<br/><br/>Continuous Vulnerability Management 239<br/><br/>Controlled Use of Administrative Privileges 240<br/><br/>Secure Configuration for Hardware and Software on Mobile Devices, Laptops, Workstations, and Servers 241<br/><br/>Maintenance, Monitoring, and Analysis of Audit Logs 246<br/><br/>In Conclusion 248<br/><br/>Index 249 |
| 520 ## - SUMMARY, ETC. |
|---|
| Summary, etc. |
A practical handbook to cybersecurity for both tech and non-tech professionals<br/><br/>As reports of major data breaches fill the headlines, it has become impossible for any business, large or small, to ignore the importance of cybersecurity. Most books on the subject, however, are either too specialized for the non-technical professional or too general for positions in the IT trenches. Thanks to author Nadean Tanner’s wide array of experience from teaching at a University to working for the Department of Defense, the Cybersecurity Blue Team Toolkit strikes the perfect balance of substantive and accessible, making it equally useful to those in IT or management positions across a variety of industries. This handy guide takes a simple and strategic look at best practices and tools available to both cybersecurity management and hands-on professionals, whether they be new to the field or looking to expand their expertise.<br/><br/>Tanner gives comprehensive coverage to such crucial topics as security assessment and configuration, strategies for protection and defense, offensive measures, and remediation while aligning the concept with the right tool using the CIS Controls version 7 as a guide. Readers will learn why and how to use fundamental open source and free tools such as ping, tracert, PuTTY, pathping, sysinternals, NMAP, OpenVAS, Nexpose Community, OSSEC, Hamachi, InSSIDer, Nexpose Community, Wireshark, Solarwinds Kiwi Syslog Server, Metasploit, Burp, Clonezilla and many more.<br/><br/>Up-to-date and practical cybersecurity instruction, applicable to both management and technical positions<br/><br/>• Straightforward explanations of the theory behind cybersecurity best practices<br/><br/>• Designed to be an easily navigated tool for daily use<br/><br/>• Includes training appendix on Linux, how to build a virtual lab and glossary of key terms<br/><br/>The Cybersecurity Blue Team Toolkit is an excellent resource for anyone working in digital policy as well as IT security professionals, technical analysts, program managers, and Chief Information and Technology Officers. This is one handbook that won’t gather dust on the shelf, but remain a valuable reference at any career level, from student to executive. |
| 650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name entry element |
Computer security. |
| 655 #4 - INDEX TERM--GENRE/FORM |
|---|
| Genre/form data or focus term |
Electronic books |
| 856 ## - ELECTRONIC LOCATION AND ACCESS |
|---|
| Link text |
Full text available at Wiley Online Library Click here to view |
| Uniform Resource Identifier |
<a href="https://onlinelibrary.wiley.com/doi/book/10.1002/9781119552963">https://onlinelibrary.wiley.com/doi/book/10.1002/9781119552963</a> |
| 942 ## - ADDED ENTRY ELEMENTS (KOHA) |
|---|
| Source of classification or shelving scheme |
|
| Koha item type |
EBOOK |