Cybersecurity Blue Team Toolkit

Cybersecurity Blue Team Toolkit

by Nadean H. Tanner
Released April 2019
Publisher(s): Wiley
ISBN: 9781119552932

Read it now on the O’Reilly learning platform with a 10-day free trial.

O’Reilly members get unlimited access to books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Book description

A practical handbook to cybersecurity for both tech and non-tech professionals

As reports of major data breaches fill the headlines, it has become impossible for any business, large or small, to ignore the importance of cybersecurity. Most books on the subject, however, are either too specialized for the non-technical professional or too general for positions in the IT trenches. Thanks to author Nadean Tanner’s wide array of experience from teaching at a University to working for the Department of Defense, the Cybersecurity Blue Team Toolkit strikes the perfect balance of substantive and accessible, making it equally useful to those in IT or management positions across a variety of industries. This handy guide takes a simple and strategic look at best practices and tools available to both cybersecurity management and hands-on professionals, whether they be new to the field or looking to expand their expertise.

Tanner gives comprehensive coverage to such crucial topics as security assessment and configuration, strategies for protection and defense, offensive measures, and remediation while aligning the concept with the right tool using the CIS Controls version 7 as a guide. Readers will learn why and how to use fundamental open source and free tools such as ping, tracert, PuTTY, pathping, sysinternals, NMAP, OpenVAS, Nexpose Community, OSSEC, Hamachi, InSSIDer, Nexpose Community, Wireshark, Solarwinds Kiwi Syslog Server, Metasploit, Burp, Clonezilla and many more.

Up-to-date and practical cybersecurity instruction, applicable to both management and technical positions

•          Straightforward explanations of the theory behind cybersecurity best practices

•          Designed to be an easily navigated tool for daily use

•          Includes training appendix on Linux, how to build a virtual lab and glossary of key terms

The Cybersecurity Blue Team Toolkit is an excellent resource for anyone working in digital policy as well as IT security professionals, technical analysts, program managers, and Chief Information and Technology Officers. This is one handbook that won’t gather dust on the shelf, but remain a valuable reference at any career level, from student to executive.

Table of contents

  1. Cover
  2. Foreword
  3. Introduction
  4. CHAPTER 1: Fundamental Networking and Security Tools
    1. Ping
    2. IPConfig
    3. NSLookup
    4. Tracert
    5. NetStat
    6. PuTTY
  5. CHAPTER 2: Troubleshooting Microsoft Windows
    1. RELI
    2. PSR
    3. PathPing
    4. MTR
    5. Sysinternals
    6. The Legendary God Mode
  6. CHAPTER 3: Nmap—The Network Mapper
    1. Network Mapping
    2. Port Scanning
    3. Services Running
    4. Operating Systems
    5. Zenmap
  7. CHAPTER 4: Vulnerability Management
    1. Managing Vulnerabilities
    2. OpenVAS
    3. Nexpose Community
  8. CHAPTER 5: Monitoring with OSSEC
    1. Log‐Based Intrusion Detection Systems
    2. Agents
    3. Log Analysis
  9. CHAPTER 6: Protecting Wireless Communication
    1. 802.11
    2. inSSIDer
    3. Wireless Network Watcher
    4. Hamachi
    5. Tor
  10. CHAPTER 7: Wireshark
    1. Wireshark
    2. OSI Model
    3. Capture
    4. Filters and Colors
    5. Inspection
  11. CHAPTER 8: Access Management
    1. AAA
    2. Least Privilege
    3. Single Sign‐On
    4. JumpCloud
  12. CHAPTER 9: Managing Logs
    1. Windows Event Viewer
    2. Windows PowerShell
    3. BareTail
    4. Syslog
    5. SolarWinds Kiwi
  13. CHAPTER 10: Metasploit
    1. Reconnaissance
    2. Installation
    3. Gaining Access
    4. Metasploitable2
    5. Vulnerable Web Services
    6. Meterpreter
  14. CHAPTER 11: Web Application Security
    1. Web Development
    2. Information Gathering
    3. DNS
    4. Defense in Depth
    5. Burp Suite
  15. CHAPTER 12: Patch and Configuration Management
    1. Patch Management
    2. Configuration Management
    3. Clonezilla Live
  16. CHAPTER 13: Securing OSI Layer 8
    1. Human Nature
    2. Human Attacks
    3. Education
    4. The Social Engineer Toolkit
  17. CHAPTER 14: Kali Linux
    1. Virtualization
    2. Optimizing Kali Linux
    3. Using Kali Linux Tools
  18. CHAPTER 15: CISv7 Controls and Best Practices
    1. CIS Basic Controls—The Top Six
    2. In Conclusion
  19. Index
  20. End User License Agreement

Product information

  • Title: Cybersecurity Blue Team Toolkit
  • Author(s): Nadean H. Tanner
  • Release date: April 2019
  • Publisher(s): Wiley
  • ISBN: 9781119552932