Intrusion Prevention and Active Response: Deploying Network and Host IPS
Intrusion Prevention and Active Response provides an introduction to the field of Intrusion Prevention and provides detailed information on various IPS methods and technologies. Specific methods are covered in depth, including both network and host IPS and response technologies such as port deactivation, firewall/router network layer ACL modification, session sniping, outright application layer data modification, system call interception, and application shims.
What people are saying - Write a review
We haven't found any reviews in the usual places.
False Positives and Real Damage
Four Layers of IPS Actions
Network Inline Data Modification
Protecting Your Host Through the Operating System
IPS at the Application Layer
Other editions - View all
access control active response system address space alert allows Apache Application layer Application-layer Application-layer data application-level Bad Joke Server block buffer overflow bytes chapter client configured connection deep packet inspection deployed e7ff bfa0 e7ff encrypted eth0 Ethernet evilhost example execute exploit false positives Figure filtering firewall function Fwsnort header host ICMP implemented inline device inline IPS installed interface Internet Intrusion Detection intrusion prevention IP address IPtables keyword Linux kernel malicious memory Metasploit ModSecurity Netfilter Nmap open source packet inspection packet trace passwd.txt payload port scans processor protection protocol request router RST packet running script segment SELinux signatures Snort IDS Snort rule Snort_inline Snortsam specific spoofed SQL injection stack StackGuard strcpy string match extension TCP reset TCP session tcpdump techniques tion vulnerability Web server wget Witty worm
Page i - Through this site, we've been able to provide readers a real time extension to the printed book. As a registered owner of this book, you will qualify for free access to our members-only email@example.com program. Once you have registered, you will enjoy several benefits, including: • Four downloadable e-booklets on topics related to the book. Each booklet is approximately 20-30 pages in Adobe PDF format.