Extrusion detection illustrated

This chapter will help you learn how to use extrusion detection to enhance your customer's awareness and security posture.

Richard Bejtlich

Published: 23 Sep 2006

Extrusion detection is the process of identifing unauthorized activity by inspecting outbound network traffic. If a security consultant observes suspicious or malicious traffic leaving his customer's network, there's a strong possibility that internal systems are already compromised. During the last three years extrusion-centric processes and products have become popular. This chapter from Richard Bejtlich's Extrusion Detection: Security Monitoring for Internal Intrusions will help you learn how to use this powerful investigative technique to enhance your customer's awareness and security posture.

Download Chapter 3, Extrusion detection illustrated (PDF), from Extrusion Detection: Security Monitoring for Internal Intrusions written by Richard Bejtlich and published by Addison-Wesley Professional.

Extrusion Detection: Security Monitoring for Internal Intrusions
By Bejtlich, Richard
Published by Addison-Wesley Professional
ISBN: 0321349962; Published: 11/4/2005; Copyright 2006; Pages: Final; Edition: 1

Dig Deeper on Managed network security services

Fact or fiction: Inside extrusion detection and prevention technology According to our latest survey of more than 608 enterprise security pros, 80% of enterprises say protecting data is more important in 2007 than last year, and 72% admit they need a better strategy. SearchSecurity.com is responding to this growing need with a multi-lesson Data Protection Security School to help you formulate a comprehensive strategy to secure sensitive info throughout your network. With a new data breach headline in the news almost daily, plenty of infosec pros are looking for new ways to proactively spot potential data disclosure problems before they happen. Extrusion detection and prevention tools can help, but to be effective, practitioners must know what they can and can't do. This podcast will use the popular "fact or fiction" format to help sort out what is and isn't true about today's extrusion detection and prevention technology.

Can database extrusion products effectively prevent data loss? In this SearchSecurity.com Q&A, security expert Michael Cobb explains how well database extrusion products can protect an organization's stored confidential information.

How to analyze internal security threats: Network security from the inside out Learn to effectively assess threats from internal clients, detect anomalies in outgoing traffic, architect networks to resist internal attacks, respond effectively when attacks occur and more.

IDS Snort rules: Bleeding Edge Threats rules This section of the Snort Report on Snort IDS rules covers rules privded by Bleeding Edge Threats (BET).

IDS Snort rules: False positives In this portion of the Snort Report on IDS Snort rules, Richard Bejtlich discusses how to identify and deal with false positives.

IDS Snort rules: Acquiring Snort rules Learn how to acquire the rules you'll need to run Snort to your specifications.

MicroscopeUK

Extrusion detection illustrated

This chapter will help you learn how to use extrusion detection to enhance your customer's awareness and security posture.

Dig Deeper on Managed network security services

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

MicroscopeUK

MicroScope: Time for change

Barracuda enjoys MSP growth

Lenovo lifts lid on SME demands for more flexibility

SearchSecurity

DOJ takes action against Dridex malware group, Evil Corp

Session cookie mishap exposed HackerOne private reports

NSS Labs drops antitrust suit against AMTSO, Symantec and ESET

SearchStorage

Samsung V-NAND SSDs designed for high capacity, speed, efficiency

Portworx ships backup, capacity management for containers

Computational storage for IoT and other potential use cases

SearchNetworking

Assess the Wi-Fi 6 features available in Wave 1 and Wave 2

3 networking startups rearchitect routing

A deep dive into the differences between 4G and 5G networks

SearchCloudComputing

Review these Azure Service Bus best practices

Instill cloud change management best practices

How much cloud does an IT disaster recovery plan need?

SearchDataManagement

Amazon cloud database and data analytics expand

Vendors move away from open source database software licensing

Oracle looks to grow multi-model database features

SearchBusinessAnalytics

Sisense analytics platform update features AI, data prep tool

Operation Fistula uses data to treat childbirth injuries

Automated tools broaden the future scope of data science

Dig Deeper on Managed network security services

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.