Problem solve

Extrusion detection illustrated

This chapter will help you learn how to use extrusion detection to enhance your customer's awareness and security posture.

Richard Bejtlich

Extrusion detection is the process of identifing unauthorized activity by inspecting outbound network traffic. If a security consultant observes suspicious or malicious traffic leaving his customer's network, there's a strong possibility that internal systems are already compromised. During the last three years extrusion-centric processes and products have become popular. This chapter from Richard Bejtlich's Extrusion Detection: Security Monitoring for Internal Intrusions will help you learn how to use this powerful investigative technique to enhance your customer's awareness and security posture.

Download Chapter 3, Extrusion detection illustrated (PDF), from Extrusion Detection: Security Monitoring for Internal Intrusions written by Richard Bejtlich and published by Addison-Wesley Professional.

Extrusion Detection: Security Monitoring for Internal Intrusions
By Bejtlich, Richard
Published by Addison-Wesley Professional
ISBN: 0321349962; Published: 11/4/2005; Copyright 2006; Pages: Final; Edition: 1

This was last published in September 2006

Dig Deeper on Managed network security services

All
News
Get Started
Evaluate
Manage
Problem Solve

Start the conversation

Send me notifications when other members comment.

-ADS BY GOOGLE

MicroscopeUK

Data will be flowing through the retail systems this Black Friday

Resellers that support the retail sector will be keeping a keen eye on how their customers react to the huge amounts of data that...
Channel roundup: Who's gone where?

Another busy few days in the channel with movement across all levels as firms get some fresh talent in while there is still some ...
SolarWinds adds internal security depth with 8MAN buy

Acquisition plugs a gap in the portfolio and gives SolarWinds part of the Access Rights Management market

SearchSecurity

Firefox Monitor offers breach alerts on visited websites

The promised integration with Have I Been Pwned is expanding in Firefox Monitor with new breach alerts when a user visits a ...
Cylance acquisition shifts BlackBerry towards security

BlackBerry made its strongest move yet toward enterprise security with a $1.4 billion acquisition of cybersecurity startup ...
Google BGP route leak was accidental, not hijacking

Despite early speculation, experts concluded the BGP route leak that sent Google traffic through China and Russia was due to an ...

SearchStorage

8 steps to effective multi-cloud cost management

Strategic thinking and careful planning can help you squeeze the maximum value out of your multi-cloud environment. Here are ...
Panasas ActiveStor chases Lustre users with portable PanFS

With ActiveStor Ultra, Panasas ports its PanFS parallel file systems to Linux. The vendor's plans include OEM server deals to ...
Western Digital Ultrastar DC ME200 optimizes memory storage

Western Digital extends its Ultrastar SSD line, adding a software-defined layer for fast in-memory computing. An onboard ...

SearchNetworking

Cisco earnings, revenue up as sales rise across product lines

Cisco earnings and revenues grew in the quarter ended Oct. 27 as sales increased across product lines, geographies and customer ...
Aruba 802.11ax APs, switches address niche market

Aruba has launched access points and switches aimed at early adopters of the next-generation Wi-Fi standard. The Aruba 802.11ax ...
LiveAction updates LiveNX network management service

In networking news, LiveAction launches LiveNX 8 and LiveWire; Kaloom and Red Hat collaborate for a virtualized central office; ...

SearchCloudComputing

Compare cloud container registries from AWS, Azure and Google

Many developers use the Docker Hub container registry, but there are other options from AWS, Azure and Google. Explore these ...
Evaluate 3 cloud-native CI/CD pipeline tools

When it comes to continuous integration and delivery tools, there is no shortage of comparable options -- including those from ...
Cloud-based quantum computing inches slowly toward enterprise

A lot of questions -- and complexity -- still surround quantum computing. But as enterprises eventually ramp up with the ...

SearchDataManagement

How data duplication in healthcare is diagnosed

Electronic health record systems have helped reduce duplicate patient data in hospitals -- but they haven't cured the problem. ...
IBM-Red Hat deal highlights changes due in data processing

The IBM acquisition of Red Hat marks a watershed in computer architecture. The duo says it can rebuild data applications in new ...
How to build a master data index: Static vs. dynamic indexing

Expert David Loshin explores the differences between static and dynamic indexing in master data management systems, and which ...

SearchBusinessAnalytics

ThoughtSpot SearchIQ enables voice analytics

Part of the ThoughtSpot 5 update, which adds a number of upgrades to the BI platform, SearchIQ allows users to take advantage of ...
At Logi Analytics and Tableau, beta feedback drives creation

Constructive commentary from software beta testing can help work out bugs and bring about new ideas, which BI vendors Logi ...
6 big data visualization project ideas and tools

These data visualization project examples and tools illustrate how enterprises are expanding the use of "data viz" tools to get a...

Close