Problem solve

Extrusion detection illustrated

This chapter will help you learn how to use extrusion detection to enhance your customer's awareness and security posture.

Richard Bejtlich

Extrusion detection is the process of identifing unauthorized activity by inspecting outbound network traffic. If a security consultant observes suspicious or malicious traffic leaving his customer's network, there's a strong possibility that internal systems are already compromised. During the last three years extrusion-centric processes and products have become popular. This chapter from Richard Bejtlich's Extrusion Detection: Security Monitoring for Internal Intrusions will help you learn how to use this powerful investigative technique to enhance your customer's awareness and security posture.

Download Chapter 3, Extrusion detection illustrated (PDF), from Extrusion Detection: Security Monitoring for Internal Intrusions written by Richard Bejtlich and published by Addison-Wesley Professional.

Extrusion Detection: Security Monitoring for Internal Intrusions
By Bejtlich, Richard
Published by Addison-Wesley Professional
ISBN: 0321349962; Published: 11/4/2005; Copyright 2006; Pages: Final; Edition: 1

This was last published in September 2006

Dig Deeper on Managed network security services

All
News
Get Started
Evaluate
Manage
Problem Solve

Start the conversation

Send me notifications when other members comment.

-ADS BY GOOGLE

MicroscopeUK

Channel roundup: Who's gone where?

Another week and there has been plenty of personnel movement across the channel with some senior channel appointments being made
Softcat provides investor cheer with Q3 update

Channel player continues to deliver the goods with an upbeat third quarter trading update
Recarta acquisition extends vendor relationships and infrastructure expertise

The IBM partner joins the growing list of resellers that have struck acquisitions this year after picking up Möbius Business ...

SearchSecurity

What makes BSA's secure software development framework unique?

BSA rolled out a new secure software development framework in an effort to promote best practices for secure software development...
Why EDR technologies are essential for endpoint protection

In this post-perimeter era, endpoint detection and response tools can provide essential protection to thwart advanced persistent ...
Endpoint security tools get an essential upgrade

Malware, APTs and other threats are getting smarter, but so are endpoint detection and response products. Learn what the latest ...

SearchStorage

Red Hat storage shifts focus to OpenShift, hybrid cloud, HCI

Red Hat changes focus from selling stand-alone Ceph and Gluster products to promoting storage technologies designed for OpenShift...
7 must-have features for multi-cloud storage optimization

When evaluating cloud platforms for a multi-cloud storage strategy, look for what they offer in terms of integration, networking ...
IBM-Red Hat deal raises no storage red flags yet

Storage practitioners say they expect Red Hat's 'new overlords' at IBM to tread lightly on Red Hat storage, despite potential ...

SearchNetworking

Marconi Mainnet launched for building, scaling complex networks

The Marconi Mainnet platform provides blockchain security, multi-cloud connectivity, advanced firewalls and secure gateways for ...
Key factors to consider before evaluating campus edge switches

Before buying a campus edge switch, it's important to understand how technologies such as IoT could affect campus traffic and how...
Extreme Networks CEO blames China, not Trump, for trade impasse

Extreme Networks CEO Ed Meyercord blames China, not President Donald Trump, for the impasse in trade talks that could force the ...

SearchCloudComputing

Microsoft hands developer advocates keys to the kingdom

Microsoft views developers as key to not only maintaining its customer base, but expanding it through interaction with open ...
Poor hybrid data placement can swell cloud costs

Enterprises that rely on public clouds are no stranger to egress traffic charges, but those costs can skyrocket when it comes to ...
Apptio buys Cloudability for cloud cost optimization

Apptio looks to strengthen its cloud cost optimization services with the addition of Cloudability, as the industry continues to ...

SearchDataManagement

Lumina launches Radiance, a data risk management platform

In an effort to prevent data loss, Lumina launched Radiance, a SaaS data risk management platform. It collects and analyzes data ...
Advice on enterprise data cleansing from an SAP VP

SAP's Kristin McMahon details data cleansing best practices and explains why a good data cleanse needs continual communication, ...
Data virtualization layer feeds logical data warehouse, Agile BI

Indiana University is using data virtualization to combine data from various source systems for analysis, as part of an ...

SearchBusinessAnalytics

McDonald's orders up customer service analytics, shakes up fast food

The fast-food giant announced last month that it is acquiring Dynamic Yield, a big data platform, in pursuit of a more ...
Sisense acquisition of Periscope yields versatile BI platform

The Sisense merger with Periscope Data is expected to create a new, combined BI product that will cater to casual business users ...
Qlik multi-cloud, Kubernetes options drive cloud-first vision

Qlik advances its plan to be a cloud- and SaaS-first analytics vendor with new multi-cloud and Kubernetes deployment options. But...

Close