|
Syngress OSSEC Host Based Intrusion Detection Guide Feb 2008 eBook
Full name: Syngress.OSSEC.Host.Based.Intrusion.Detection.Guide.Feb.2008.eBook-BBL.nfo
Info
| Views
| Downloads
| Options
|
Section:
Date: |
E-Book
2008-04-22 12:41 |
Total:
Today: |
0
0 |
Total:
Today: |
0
0 |
Download: |
.nfo |
ÜŪŪŪŪŪÜÜÜ ÜŪŪŪŪŪÜÜÜÜ ÜŪŪŪŪŪÜÜÜÜ
Ū²ŪŪŪŪŪŪŪ Ū²ŪŪŪŪŪŪŪ Ū²ŪŪŪŪŪŪŪ
Ū²ŪŪŪŪŪŪŻ ÜÜÜÜŪ²ŪŪŪŪŪŪŻ ÜÜÜÜŪ²ŪŪŪŪŪŪŻ
Ž²ŪŪŪŪŪŪ ÜÜŪßßß ÜÜßßŪŪŪŪŪŪ ÜÜŪßßß ÜÜßßŪŪŪŪŪŪ
Ž²ŪŪŪŪŪŪ ßÜÜÜÜŪŪŪŪŪŪŪÜ ßŪŪŪ ßÜÜÜÜŪŪŪŪŪŪŪÜ ßŪŪŪ
ŽŪ²ŪŪŪŪŪŪ ßßßßŪŪŪŪŪ²ŪŪŻŪŪŪ ßßßßŪŪŪŪŪ²ŪŪŻŪŪŪ
ÜßŪ²ŪŪŪŪŪÜ ßŪŪŪ²ŪŪŽŪŪÜ ßŪŪŪ²ŪŪŽŪŪÜ
ßßßßßß ßŪŪŪŪŪŪŪÜ ÜÜŪŪŪŪßÜŪŪŪŪŪÜ ÜÜŪŪŪŪßÜŪŪŪŪŪÜßßßßßßß
ßßßßßßßßßßŪÜ ßßŪŪŪŪŪŪÜÜŪŪßßß ÜÜßßßŪŪŪŪŪŪŪÜÜŪŪßßß ÜÜßßßŪŪŪŪŪŪŪß Ūßßßßßß
ßŪÜÜÜ ßßßÜÜÜÜßßßß ßŪÜÜÜÜ ßßßÜÜÜÜßßßß ßŪÜÜÜÜ ßßÜÜŪ
ś-ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ ßßßßß ÄÄÄÄÄÄÄÄÄÄÄÄÄ ßßßßß ÄÄÄÄÄÄÄÄÄÄÄÄÄ ßßßßß ÄÄÄÄÄÄÄ--ś
- p r e s e n t s -
ś-ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ--ś
OSSEC Host-Based Intrusion Detection Guide (c) by Syngress
The type of the release is: eBook
In the PDF format with ISBN: 159749240X and Pub Date: February 18, 2008
The size of the release is: 03 disks x 2.88mb
And released on: 04/22/2008
ś-ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ--ś
This book is the definitive guide on the OSSEC Host-based Intrusion
Detection system and frankly, to really use OSSEC you are going to need
a definitive guide. Documentation has been available since the start of
the OSSEC project but, due to time constraints, no formal book has been
created to outline the various features and functions of the OSSEC
product. This has left very important and powerful features of the
product undocumented...until now! The book you are holding will show
you how to install and configure OSSEC on the operating system of your
choice and provide detailed examples to help prevent and mitigate
attacks on your systems.
-- Stephen Northcutt OSSEC determines if a host has been compromised in
this manner by taking the equivalent of a picture of the host machine in
its original, unaltered state. This ?picture? captures the most relevant
information about that machine?s configuration. OSSEC saves this
?picture? and then constantly compares it to the current state of that
machine to identify anything that may have changed from the original
configuration. Now, many of these changes are necessary, harmless, and
authorized, such as a system administrator installing a new software
upgrade, patch, or application. But, then there are the not-so-harmless
changes, like the installation of a rootkit, trojan horse, or virus.
Differentiating between the harmless and the not-so-harmless changes
determines whether the system administrator or security professional is
managing a secure, efficient network or a compromised network which
might be funneling credit card numbers out to phishing gangs or storing
massive amounts of pornography creating significant liability for that
organization. Separating the wheat from the chaff is by no means an easy
task. Hence the need for this book. The book is co-authored by Daniel
Cid, who is the founder and lead developer of the freely available OSSEC
host-based IDS. As such, readers can be certain they are reading the
most accurate, timely, and insightful information on OSSEC. Get Started
with OSSEC Get an overview of the features of OSSEC including commonly
used terminology, pre-install preparation, and deployment
considerations. Follow Steb-by-Step Installation Instructions Walk
through the installation process for the "local, agent, and "server"
install types on some of the most popular operating systems available.
Master Configuration Learn the basic configuration options for your
install type and learn how to monitor log files, receive remote
messages, configure email notification, and configure alert levels. Work
With Rules Extract key information from logs using decoders and how you
can leverage rules to alert you of strange occurrences on your network.
Understand System Integrity Check and Rootkit Detection Monitor binary
executable files, system configuration files, and the Microsoft Windows
registry. Configure Active Response Configure the active response
actions you want and bind the actions to specific rules and sequence of
events. Use the OSSEC Web User Interface Install, configure, and use the
community-developed, open source web interface available for OSSEC. Play
in the OSSEC VMware Environment Sandbox Use the OSSEC HIDS VMware Guest
image on the companion DVD to implement what you have learned in a
sandbox-style environment. Dig Deep into Data Log Mining Take the high
art of log analysis to the next level by breaking the dependence on the
lists of strings or patterns to look for in the logs.
http://www.amazon.com/exec/obidos/tg/detail/-/159749240X/
INSTALL NOTES
Unzip, unrar and enjoy
ś-ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ--ś
Greetings fly out to all our close friends
ś-ÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄÄ--ś
- TRADITION OF QUALITY SINCE 2005 -
|
