|
Title: Any reviews of Practical Intrusion Analysis? Post by: SEC_JUNKIE on October 23, 2009, 03:30:41 PM Any reviews of Practical Intrusion Analysis by Ryan Trost? I was wondering how people thought it compared to previous IDS/IPS books (notice I said "IDS" and NOT "SNORT")?
Flipping through it at Borders, I do like the amount of ground covered! Anybody use geospatial intrusion detection (the usage of geographical endpoints for a measure of IDS/IPS analysis)? I skimmed the chapter and might simply buy it for that one chapter. Title: Re: Any reviews of Practical Intrusion Analysis? Post by: SecMan on October 24, 2009, 03:11:14 PM Check out the reviews over here - http://www.amazon.com/Practical-Intrusion-Analysis-Prevention-Twenty-First/dp/0321591801
Title: Re: Any reviews of Practical Intrusion Analysis? Post by: been_there - secured_that on November 02, 2009, 08:12:20 PM I really enjoyed the book myself.
The chapter on netflow was informative and insightful. Especially given the amount of emphasis security practitioners are putting on the technology (thankfully to netflow gurus like jose nazario -- conficker finder). I also really enjoyed the physical security chapter. Rarely do technical books dive into that topic which is unfortunate since physical breaches are the easiest! The included WAF chapter is essential these days. Typical signature based NIDS are too easy to evade. I give it 4 out of 5 stars...
Powered by SMF 1.1.18 |
SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com |