Book description
Build a network security threat model with this comprehensive learning guide
Key Features
- Develop a network security threat model for your organization
- Gain hands-on experience in working with network scanning and analyzing tools
- Learn to secure your network infrastructure
Book Description
The tech world has been taken over by digitization to a very large extent, and so it's become extremely important for an organization to actively design security mechanisms for their network infrastructures. Analyzing vulnerabilities can be one of the best ways to secure your network infrastructure.
Network Vulnerability Assessment starts with network security assessment concepts, workflows, and architectures. Then, you will use open source tools to perform both active and passive network scanning. As you make your way through the chapters, you will use these scanning results to analyze and design a threat model for network security. In the concluding chapters, you will dig deeper into concepts such as IP network analysis, Microsoft Services, and mail services. You will also get to grips with various security best practices, which will help you build your network security mechanism.
By the end of this book, you will be in a position to build a security framework fit for an organization.
What you will learn
- Develop a cost-effective end-to-end vulnerability management program
- Implement a vulnerability management program from a governance perspective
- Learn about various standards and frameworks for vulnerability assessments and penetration testing
- Understand penetration testing with practical learning on various supporting tools and techniques
- Gain insight into vulnerability scoring and reporting
- Explore the importance of patching and security hardening
- Develop metrics to measure the success of the vulnerability management program
Who this book is for
Network Vulnerability Assessment is for security analysts, threat analysts, and any security professionals responsible for developing a network threat model for an organization. This book is also for any individual who is or wants to be part of a vulnerability management team and implement an end-to-end robust vulnerability management program.
Publisher resources
Table of contents
- Title Page
- Copyright and Credits
- Packt Upsell
- Contributors
- Preface
- Vulnerability Management Governance
- Setting Up the Assessment Environment
-
Security Assessment Prerequisites
- Target scoping and planning
- Gathering requirements
- Deciding upon the type of vulnerability assessment
- Estimating the resources and deliverables
- Preparing a test plan
- Getting approval and signing NDAs
- Summary
- Information Gathering
- Enumeration and Vulnerability Assessment
- Gaining Network Access
- Assessing Web Application Security
- Privilege Escalation
- Maintaining Access and Clearing Tracks
- Vulnerability Scoring
- Threat Modeling
- Patching and Security Hardening
-
Vulnerability Reporting and Metrics
- Importance of reporting
- Type of reports
- Reporting tools
- Collaborative vulnerability management with Faraday v2.6
-
Metrics
- Mean time to detect
- Mean time to resolve
- Scanner coverage
- Scan frequency by asset group
- Number of open critical/high vulnerabilities
- Average risk by BU, asset group, and so on
- Number of exceptions granted
- Vulnerability reopen rate
- Percentage of systems with no open high/critical vulnerability
- Vulnerability ageing
- Summary
- Other Books You May Enjoy
Product information
- Title: Network Vulnerability Assessment
- Author(s):
- Release date: August 2018
- Publisher(s): Packt Publishing
- ISBN: 9781788627252
You might also like
book
Managing A Network Vulnerability Assessment
Offers a formal framework for finding and eliminating network security threats. This title focuses on the …
book
Network Security Strategies
Build a resilient network and prevent advanced cyber attacks and breaches Key Features Explore modern cybersecurity …
book
Securing Network Infrastructure
Plug the gaps in your network's infrastructure with resilient network security models Key Features Develop a …
book
Computer Network Security
Developed in collaboration with a training and certification team from Cisco, Computer Network Security is an …