 | | |
| Network Security Assessment: Know Your Network | 
| Author: Chris Mcnab
Publisher: O'Reilly Media, Inc.
Category: Book
List Price: $39.99
Buy New: $20.00
You Save: $19.99 (50%)
Buy New/Used from $18.00
Avg. Customer Rating:  (21 reviews)
Sales Rank: 317407
Format: Illustrated
Media: Paperback
Edition: 2
Number Of Items: 1
Pages: 504
Shipping Weight (lbs): 1.6
Dimensions (in): 9.1 x 7 x 0.9
ISBN: 0596510306
Dewey Decimal Number: 005.8
EAN: 9780596510305
ASIN: 0596510306
Publication Date: November 1, 2007
Availability: Usually ships in 1-2 business days
|
| Similar Items:
|
| Editorial Reviews:
Product Description
How secure is your network? The best way to find out is to attack it. Network Security Assessment provides you with the tricks and tools professional security consultants use to identify and assess risks in Internet-based networks-the same penetration testing model they use to secure government, military, and commercial networks. With this book, you can adopt, refine, and reuse this testing model to design and deploy networks that are hardened and immune from attack.
Network Security Assessment demonstrates how a determined attacker scours Internet-based networks in search of vulnerable components, from the network to the application level. This new edition is up-to-date on the latest hacking techniques, but rather than focus on individual issues, it looks at the bigger picture by grouping and analyzing threats at a high-level. By grouping threats in this way, you learn to create defensive strategies against entire attack categories, providing protection now and into the future.
Network Security Assessment helps you assess: - Web services, including Microsoft IIS, Apache, Tomcat, and subsystems such as OpenSSL, Microsoft FrontPage, and Outlook Web Access (OWA)
- Web application technologies, including ASP, JSP, PHP, middleware, and backend databases such as MySQL, Oracle, and Microsoft SQL Server
- Microsoft Windows networking components, including RPC, NetBIOS, and CIFS services
- SMTP, POP3, and IMAP email services
- IP services that provide secure inbound network access, including IPsec, Microsoft PPTP, and SSL VPNs
- Unix RPC services on Linux, Solaris, IRIX, and other platforms
- Various types of application-level vulnerabilities that hacker tools and scripts exploit
Assessment is the first step any organization should take to start managing information risks correctly. With techniques to identify and assess risks in line with CESG CHECK and NSA IAM government standards, Network Security Assessment gives you a precise method to do just that.
|
| Customer Reviews: Read 16 more reviews...
 Still good companion for the security prosessional July 2, 2008
This review is a comparison between the first and second edition. Other readers have properly described the book and you won't find anything different.
The book is still very concise (its strength) and to the point. The previous edition had some links (or many I'd say) that were not working, or simply do not exist anymore. In this sense it's a good update.
Probably the author had to decide between waiting more and revamp an important part of the book, or publish this edition with no major updates or changes.
The book is still a good companion so buy it if it's not in your library. But if you have it wait for a third edition when all major updates in major operating systems take place.
 Essential For Security Concerned IT Admins April 2, 2008
0 out of 1 found this review helpful
'Network Security Assessment: Know Your Network' is an absolute must buy for anyone that runs/admins a network and needs to know the tricks to keeping things safer in today's connected world. Warning right off the bat that this is a very niche market of reader and it's NOT NOT NOT for the regular developer or admin. This is heavy on the technical jargon and you better know all your acronyms like there is no tomorrow from TCP to IP to LDAP to xxx!!
From IIS to VPN to Databases and regular Windows usage there are tons of case studies and examples throughout that will help you plug leaks and keep the bad guys out. Here's a chapter overview:
01. Network Security Assessment Basics
02. Network Security Assessment Platform
03. Internet Host and Network Enumeration
04. IP Network Scanning
05. Assessing Remote Information Services
06. Assessing Web Servers
07. Assessing Web Applications
08. Assessing Remote Maintenance Services
09. Assessing Database Services
10. Assessing Windows Networking Services
11. Assessing Email Services
12. Assessing IP VPN Services
13. Assessing Unix RPC Services
14. Application-Level Risks
15. Running Nessus
16. Exploitation Frameworks
***** HIGHLY RECOMMENDED
Any collection catering to programmers or network managers needs January 6, 2008
1 out of 1 found this review helpful
Chris McNab's NETWORK SECURITY ASSESSMENT appears in its second updated edition to cover the protocols for testing network security - by trying to attack it internally. Tricks and tools professional security consultants use to identify and correct risks in Internet-based networks are revealed in chapters covering everything from Windows networking components and Unix RPC services on various platforms to application-level vulnerabilities. Any collection catering to programmers or network managers needs NETWORK SECURITY ASSESSMENT in its latest updated second edition.
Network Security Assessment July 20, 2005
2 out of 2 found this review helpful
explainsa variety of exploits and tells you how to harden your network. This book is very well researched and extremely well written and is reader friendly, as some security books leave the reader lost in techno babble, not this book however very easy reading it now sits on my desk as a ready reckoner.
Very good book for security policy enablers and admins May 29, 2005
3 out of 3 found this review helpful
This is one of the few books that I have come across that focuses mainly on the innards of security assessments. The services based security and counter measures are helpful for threat modeling. This book is really great for people in the security risk and threat analysis for a quantitative and qualitative validation. Good book to help in setting up corporate security policy model.
Other people have already provided a good chapter wise run-down so I will skip that here...
Buy this book :)
|
|
|
Powered by: Dknc, inc. and Amazon.com | | 
For your safety and security, orders are processed through amazon.com
|
|
|
|
