Stock Image

Instant OSSEC Host-based Intrusion Detection System

Brad Lhotsky

Published by Packt Publishing
ISBN 10: 1782167641 / ISBN 13: 9781782167648
New / Paperback / Quantity Available: 20
From BuySomeBooks (Las Vegas, NV, U.S.A.)
Available From More Booksellers
View all  copies of this book
Add to basket
List Price: US$
Price: US$ 45.61
Convert Currency
Shipping: US$ 3.95
Within U.S.A.
Destination, Rates & Speeds

30 Day Returns Policy

Save for Later

About the Book

Bibliographic Details


Title: Instant OSSEC Host-based Intrusion Detection...

Publisher: Packt Publishing

Binding: Paperback

Book Condition: New

Book Type: Paperback

Description:

Paperback. 62 pages. Dimensions: 8.9in. x 7.3in. x 0.2in.A hands-on guide exploring OSSEC HIDS for operational and security awareness Overview Learn something new in an Instant! A short, fast, focused guide delivering immediate results Install, configure, and customize an OSSEC-HIDS for your environment Manage your OSSEC-HIDS robust and comprehensive security checks Write your own rules and decoders to enhance alert accuracy and expand operational and security intelligence In Detail Security software is often expensive, restricting, burdensome, and noisy. OSSEC-HIDS was designed to avoid getting in your way and to allow you to take control of and extract real value from industry security requirements. OSSEC-HIDS is a comprehensive, robust solution to many common security problems faced in organizations of all sizes. Instant OSSEC-HIDS is a practical guide to take you from beginner to power user through recipes designed based on real- world experiences. Recipes are designed to provide instant impact while containing enough detail to allow the reader to further explore the possibilities. Using real world examples, this book will take you from installing a simple, local OSSEC-HIDS service to commanding a network of servers running OSSEC-HIDS with customized checks, alerts, and automatic responses. You will learn how to maximise the accuracy, effectiveness, and performance of OSSEC-HIDS analyser, file integrity monitor, and malware detection module. You will flip the table on security software and put OSSEC-HIDS to work validating its own alerts before escalating them. You will also learn how to write your own rules, decoders, and active responses. You will rest easy knowing your servers can protect themselves from most attacks while being intelligent enough to notify you when they need help! You will learn how to use OSSEC-HIDS to save time, meet security requirements, provide insight into your network, and protect your assets. What you will learn from this book Installing OSSEC-HIDS in local, server, and agent mode Customizing alerting to increase the signal to noise ratio Writing your own rules to extend, enhance, and tailor alerts to your environment Writing your own decoders to add context to alerts and active responses Learning tips for managing large OSSEC-HIDS installs Monitoring command output for security and operational awareness Auditing systems for compromise with a sensitivity to performance of those systems Configuring Active Response to protect servers from SSH brute force attacks Approach Filled with practical, step-by-step instructions and clear explanations for the most important and useful tasks. A fast-paced, practical guide to OSSEC-HIDS that will help you solve host-based security problems. Who this book is written for This book is great for anyone concerned about the security of their servers-whether you are a system administrator, programmer, or security analyst, this book will provide you with tips to better utilize OSSEC-HIDS. Whether youre new to OSSEC-HIDS or a seasoned veteran, youll find something in this book you can apply today! This book assumes some knowledge of basic security concepts and rudimentary scripting experience. This item ships from multiple locations. Your book may arrive from Roseburg,OR, La Vergne,TN. Bookseller Inventory # 9781782167648

About this title:

Book ratings provided by GoodReads:
4.67 avg rating
(3 ratings)

Synopsis:

A hands-on guide exploring OSSEC HIDS for operational and security awareness

Overview

  • Learn something new in an Instant! A short, fast, focused guide delivering immediate results
  • Install, configure, and customize an OSSEC-HIDS for your environment
  • Manage your OSSEC-HIDS robust and comprehensive security checks
  • Write your own rules and decoders to enhance alert accuracy and expand operational and security intelligence

In Detail

Security software is often expensive, restricting, burdensome, and noisy. OSSEC-HIDS was designed to avoid getting in your way and to allow you to take control of and extract real value from industry security requirements. OSSEC-HIDS is a comprehensive, robust solution to many common security problems faced in organizations of all sizes.

"Instant OSSEC-HIDS" is a practical guide to take you from beginner to power user through recipes designed based on real- world experiences. Recipes are designed to provide instant impact while containing enough detail to allow the reader to further explore the possibilities. Using real world examples, this book will take you from installing a simple, local OSSEC-HIDS service to commanding a network of servers running OSSEC-HIDS with customized checks, alerts, and automatic responses.

You will learn how to maximise the accuracy, effectiveness, and performance of OSSEC-HIDS’ analyser, file integrity monitor, and malware detection module. You will flip the table on security software and put OSSEC-HIDS to work validating its own alerts before escalating them. You will also learn how to write your own rules, decoders, and active responses. You will rest easy knowing your servers can protect themselves from most attacks while being intelligent enough to notify you when they need help!

You will learn how to use OSSEC-HIDS to save time, meet security requirements, provide insight into your network, and protect your assets.

What you will learn from this book

  • Installing OSSEC-HIDS in local, server, and agent mode
  • Customizing alerting to increase the signal to noise ratio
  • Writing your own rules to extend, enhance, and tailor alerts to your environment
  • Writing your own decoders to add context to alerts and active responses
  • Learning tips for managing large OSSEC-HIDS installs
  • Monitoring command output for security and operational awareness
  • Auditing systems for compromise with a sensitivity to performance of those systems
  • Configuring Active Response to protect servers from SSH brute force attacks

Approach

Filled with practical, step-by-step instructions and clear explanations for the most important and useful tasks. A fast-paced, practical guide to OSSEC-HIDS that will help you solve host-based security problems.

Who this book is written for

This book is great for anyone concerned about the security of their servers-whether you are a system administrator, programmer, or security analyst, this book will provide you with tips to better utilize OSSEC-HIDS. Whether you’re new to OSSEC-HIDS or a seasoned veteran, you’ll find something in this book you can apply today!

This book assumes some knowledge of basic security concepts and rudimentary scripting experience.

About the Author:

Brad Lhotsky

Brad Lhotsky started working with UNIX systems professionally in 1998 as a system administrator, database administrator, network engineer, programmer, and security administrator. He has been an active member of the OSSEC-HIDS community since 2004. He also currently administers one of the largest OSSEC-HIDS deployments in the world!

"About this title" may belong to another edition of this title.

Bookseller & Payment Information

Payment Methods

This bookseller accepts the following methods of payment:

  • American Express
  • MasterCard
  • Visa

[Search this Seller's Books]

[List this Seller's Books]

[Ask Bookseller a Question]

Bookseller: BuySomeBooks
Address: Las Vegas, NV, U.S.A.

AbeBooks Bookseller Since: May 21, 2012
Bookseller Rating: 5-star rating

Terms of Sale:

We guarantee the condition of every book as it's described on the Abebooks web
sites. If you're dissatisfied with your purchase (Incorrect Book/Not as
Described/Damaged) or if the order hasn't arrived, you're eligible for a refund
within 30 days of the estimated delivery date. If you've changed your mind about a book that you've ordered, please use the Ask bookseller a question link to contact us and we'll respond within 2 business days.

BuySomeBooks is operated by Drive-On-In, Inc., a Nevada co...

[More Information]

Shipping Terms:

Orders usually ship within 1-2 business days. Books are shipped from multiple locations so your order may arrive from Las Vegas,NV, Roseburg,OR, La Vergne,TN, Momence,IL, or Commerce,GA.


Store Description: BuySomeBooks is great place to get your books online. With over eight million titles available we're sure to have what you're looking for. Despite having a large selection of new books available for immediate shipment and excellent customer service, people still tell us they prefer us because of our prices.