CertificationBooks.com: Network Intrusion Detection (3rd Edition) Books

your dedicated resource for computer certification books

Home | Author Interviews | Practice Tests

Certification Watch

Get the latest certification news by email!

Certification Resources

GoExam
Certification practice tests with free demos to download.

GoCertify
Complete computer certification resource center covering virtually every IT certification.

SearchCertify
links, links and more certification links!

Quick Links: Cisco CCNA CCNP CCIE Microsoft MCTS MCITP MCSA MCSE MCSD MCDBA MOUS Sun Java Solaris Novell CNA CNE Oracle DBA Developer Red Hat RHCE RHCT More CISA CISSP CIW PMP

View Cart or Checkout

In association with Amazon.com


by: Stephen Northcutt, Judy Novak See Larger Image List Price: $54.99 Amazon.com's Price: $31.16 You Save: $23.83 (43%) as of 05/24/2012 07:09 EDT Availability: Usually ships in 24 hours Binding: Paperback EAN: 9780735712652 Edition: 3 ISBN: 0735712654 Item Dimensions: 102900171704 Label: Sams Languages: EnglishUnknownEnglishOriginal LanguageEnglishPublished Manufacturer: Sams Number Of Items: 1 Number Of Pages: 512 Publication Date: September 06, 2002 Publisher: Sams Studio: Sams Related Items: The Tao of Network Security Monitoring: Beyond Intrusion Detection Inside Network Perimeter Security (2nd Edition) Intrusion Signatures and Analysis Guide to Firewalls and VPNs Metasploit: The Penetration Tester's Guide see more Browse for similar items by category: Click to Display Editorial Review: Product Description: The Chief Information Warfare Officer for the entire United States teaches you how to protect your corporate network. This book is a training aid and reference for intrusion detection analysts. While the authors refer to research and theory, they focus their attention on providing practical information. The authors are literally the most recognized names in this specialized field, with unparalleled experience in defending our country's government and military computer networks. New to this edition is coverage of packet dissection, IP datagram fields, forensics, and snort filters. Amazon.com Review: Network Intrusion Detection: An Analyst's Handbook explains some of what you need to know to prevent unauthorized accesses of your networked computers and minimize the damage intruders can do. It emphasizes, though, proven techniques for recognizing attacks while they're underway. Without placing too much emphasis (or blame, for that matter) on any operating system or other software product, author Stephen Northcutt explains ways to spot suspicious behavior and deal with it, both automatically and manually. The case studies, large and small, are the best part of this book. Northcutt opens with a technical brief on the methods used by Kevin Mitnick in his attack upon Tsutomu Shimomura's server. In documenting that famous attack, Northcutt explains SYN flooding and TCP hijacking with clarity and detail: readers get a precise picture of what Mitnick did and how Shimomura's machine reacted. A former security expert for the U.S. Department of Defense, Northcutt explains how a system administrator would detect and defeat an attack like Mitnick's. Another case study appears later in the book, this one in the form of a line-by-line analysis of a .history file that shows how a bad guy with root privileges attacked a Domain Name System (DNS) server. Reading Northcutt's analysis is like reading a play-by-play account of a football match. Network Intrusion Detection is one of the most readable technical books around. --David Wall Topics covered: Catching intruders in the act by recognizing the characteristics of various kinds of attacks in real time, both manually and with the use of filters and other automated systems; techniques for identifying security weaknesses and minimizing false security alarms. Customer Reviews Average Rating: none