
	Home > Security Channel Tips > Chapter Downloads > Extrusion detection illustrated

Security Channel Tips:

EMAIL THIS

TIPS & NEWSLETTERS TOPICS

CHAPTER DOWNLOADS

Extrusion detection illustrated

Richard Bejtlich
09.23.2006
Rating: --- (out of 5)

Digg This!

StumbleUpon

Del.icio.us

Extrusion detection is the process of identifing unauthorized activity by inspecting outbound network traffic. If a security consultant observes suspicious or malicious traffic leaving his customer's network, there's a strong possibility that internal systems are already compromised. During the last three years extrusion-centric processes and products have become popular. This chapter from Richard Bejtlich's Extrusion Detection: Security Monitoring for Internal Intrusions will help you learn how to use this powerful investigative technique to enhance your customer's awareness and security posture.

Download Chapter 3, Extrusion detection illustrated (PDF), from Extrusion Detection: Security Monitoring for Internal Intrusions written by Richard Bejtlich and published by Addison-Wesley Professional.

Extrusion Detection: Security Monitoring for Internal Intrusions
By Bejtlich, Richard
Published by Addison-Wesley Professional
ISBN: 0321349962; Published: 11/4/2005; Copyright 2006; Pages: Final; Edition: 1

Rate this Tip
To rate tips, you must be a member of SearchSecurityChannel.com. Register now to start rating these tips. Log in if you are already a member.

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Chapter Downloads
	Testing the firewall - Introduction
	Check Point NGX R65 operational changes
	Common injection attacks
	Top security book excerpts of 2007
	Google Hacking: Ten security searches that work
	Virtual honeypots: Tracking botnets
	Tracking botnets
	Defending against bots
	Botnets summary
	Case studies

Network Security

Key aspects of cloud computing services

Check Point NGX R65 operational changes

Top security tips for solutions providers

What 2008 holds for unified threat management

Making sense of network access control

How to use shared object rules in Snort

Snort frequently asked questions

How to secure the chain of custody in a digital forensics investigation

Checklist: Top five security assessment tools

Using Microsoft Baseline Security Analyzer to detect security holes

Network Intrusion Detection and Prevention

Using SnortSP and Snort 2.8.2

The power of Snort 3.0

OSSEC Host-Based Intrusion Detection Guide

Downloading OSSEC HIDS

Performing local installation

Streamlining the installations

Installing the Windows agent

Performing server agent installations

Summary and FAQs

How to find new features in Snort 2.8.2

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

DISCLAIMER: Our Tips Exchange is a forum for you to share technical advice and expertise with your peers and to learn from other enterprise IT professionals. TechTarget provides the infrastructure to facilitate this sharing of information. However, we cannot guarantee the accuracy or validity of the material submitted. You agree that your use of the Ask The Expert services and your reliance on any questions, answers, information or other materials received through this Web site is at your own risk.

SEARCH

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Reprints \| Site Map All Rights Reserved, Copyright 2006 - 2008, TechTarget \| Read our Privacy Policy