This manual covers the Network Security Assessment, a comprehensive guide to understanding and improving network security. It details methods and tools used by professional security consultants to identify and assess risks within internet-based networks. The book focuses on a penetration testing model that can be adopted and refined to design and deploy hardened networks resistant to attack. It explores how attackers target vulnerable components from the network to the application level, presenting the latest hacking techniques. Rather than focusing on isolated issues, the manual analyzes threats at a high level, enabling the creation of robust defensive strategies against entire categories of attacks.
The purpose of this manual is to equip readers with the knowledge to perform thorough network security assessments. It details how to evaluate web services, including specific technologies like Microsoft IIS and Apache, as well as subsystems such as OpenSSL. The guide also covers web application technologies like ASP and JSP, backend databases, and Microsoft Windows networking components. Furthermore, it addresses email services, secure inbound network access IP services, and Unix RPC services on various platforms. The manual provides techniques for identifying and assessing risks in accordance with government standards, offering a precise method for managing information risks and enhancing network security.
How secure is your network? The best way to find out is to attack it. Network Security Assessment provides you with the tricks and tools professional security consultants use to identify and assess risks in Internet-based networks-the same penetration testing model they use to secure government, military, and commercial networks. With this book, you can adopt, refine, and reuse this testing model to design and deploy networks that are hardened and immune from attack.
Network Security Assessment demonstrates how a determined attacker scours Internet-based networks in search of vulnerable components, from the network to the application level. This new edition is up-to-date on the latest hacking techniques, but rather than focus on individual issues, it looks at the bigger picture by grouping and analyzing threats at a high-level. By grouping threats in this way, you learn to create defensive strategies against entire attack categories, providing protection now and into the future.
Network Security Assessment helps you assess:
- Web services, including Microsoft IIS, Apache, Tomcat, and subsystems such as OpenSSL, Microsoft FrontPage, and Outlook Web Access (OWA)
- Web application technologies, including ASP, JSP, PHP, middleware, and backend databases such as MySQL, Oracle, and Microsoft SQL Server
- Microsoft Windows networking components, including RPC, NetBIOS, and CIFS services
- SMTP, POP3, and IMAP email services
- IP services that provide secure inbound network access, including IPsec, Microsoft PPTP, and SSL VPNs
- Unix RPC services on Linux, Solaris, IRIX, and other platforms
- Various types of application-level vulnerabilities that hacker tools and scripts exploit
Assessment is the first step any organization should take to start managing information risks correctly. With techniques to identify and assess risks in line with CESG CHECK and NSA IAM government standards,
Network Security Assessment gives you a precise method to do just that.
Author: McNab, Chris
Publisher: O'Reilly Media
Illustration: N
Language: ENG
Title: Network Security Assessment: Know Your Network
Pages: 00508 (Unencrypted EPUB)
On Sale: 2009-02-09
SKU-13/ISBN: 9780596510305
Category: Computers : Security - General
Category: Computers : Networking - Local Area Networks (LANs)
Category: Computers : Networking - General
How secure is your network? The best way to find out is to attack it. Network Security Assessment provides you with the tricks and tools professional security consultants use to identify and assess risks in Internet-based networks-the same penetration testing model they use to secure government, military, and commercial networks. With this book, you can adopt, refine, and reuse this testing model to design and deploy networks that are hardened and immune from attack.
Network Security Assessment demonstrates how a determined attacker scours Internet-based networks in search of vulnerable components, from the network to the application level. This new edition is up-to-date on the latest hacking techniques, but rather than focus on individual issues, it looks at the bigger picture by grouping and analyzing threats at a high-level. By grouping threats in this way, you learn to create defensive strategies against entire attack categories, providing protection now and into the future.
Network Security Assessment helps you assess:
- Web services, including Microsoft IIS, Apache, Tomcat, and subsystems such as OpenSSL, Microsoft FrontPage, and Outlook Web Access (OWA)
- Web application technologies, including ASP, JSP, PHP, middleware, and backend databases such as MySQL, Oracle, and Microsoft SQL Server
- Microsoft Windows networking components, including RPC, NetBIOS, and CIFS services
- SMTP, POP3, and IMAP email services
- IP services that provide secure inbound network access, including IPsec, Microsoft PPTP, and SSL VPNs
- Unix RPC services on Linux, Solaris, IRIX, and other platforms
- Various types of application-level vulnerabilities that hacker tools and scripts exploit
Assessment is the first step any organization should take to start managing information risks correctly. With techniques to identify and assess risks in line with CESG CHECK and NSA IAM government standards,
Network Security Assessment gives you a precise method to do just that.
Author: McNab, Chris
Publisher: O'Reilly Media
Illustration: N
Language: ENG
Title: Network Security Assessment: Know Your Network
Pages: 00508 (Unencrypted EPUB)
On Sale: 2009-02-09
SKU-13/ISBN: 9780596510305
Category: Computers : Security - General
Category: Computers : Networking - Local Area Networks (LANs)
Category: Computers : Networking - General
