Details

Honeypots for Windows

von: Roger A. Grimes
46,99 €
Verlag:	Apress
Format:	PDF
Veröffentl.:	22.11.2006
ISBN/EAN:	9781430200079
Sprache:	englisch
Anzahl Seiten:	424

In den Warenkorb

Als Gutschein

Dieses eBook enthält ein Wasserzeichen.

Beschreibungen

Titelbeschreibung

Installing a honeypot inside your network as an early warning system can significantly improve your security. Currently, almost every book and resource about honeypots comes from a Unix background, which leaves Windows administrators still grasping for help. But Honeypots for Windows is a forensic journeyhelping you set up the physical layer, design your honeypot, and perform malware code analysis.
You'll discover which Windows ports need to be open on your honeypot to fool those malicious hackers, and you'll learn about numerous open source tools imported from the Unix world. Install a honeypot on your DMZ or at home and watch the exploits roll in! Your honeypot will capture waves of automated exploits, and youll learn how to defend the computer assets under your control.

Inhaltsverzeichnis

Honeypots in General.- An Introduction to Honeypots.- A Honeypot Deployment Plan.- Windows Honeypots.- Windows Honeypot Modeling.- Windows Honeypot Deployment.- Honeyd Installation.- Honeyd Configuration.- Honeyd Service Scripts.- Other Windows-Based Honeypots.- Honeypot Operations.- Network Traffic Analysis.- Honeypot Monitoring.- Honeypot Data Analysis.- Malware Code Analysis.

Autorenportrait

Roger A. Grimes (CPA, CISSP, MCSE: Security (NT/2000/2003/MVP), CEH, TICSA, Security+, MCT) is a Windows security consultant, instructor, and author. This is Grimes' third book and he has written over a 150 articles for magazines like Windows IT Pro, Microsoft Certified Professional, InfoWorld, Network Magazine, Windows & .NET, and Security Administrator. He is a contributing editor for Windows & .NET, and InfoWorld magazines. Grimes has presented at Windows Connections, MCP TechMentors, and SANS. He was recognized as "Most Valuable Professional" (MVP) by Microsoft, for Windows Server 2003 security. Grimes also writes frequently for Microsoft, including material for two courses on advanced Windows security and Technet. He has taught security to many of the world's largest and most respected organizations, including Microsoft, VeriSign, the U.S. Navy, various universities, and public school systems. Grimes spends his time surrounded by the maddening hum of twelve 1U servers in his home office, monitoring his personal honeypots.

Verkaufsargumente

Book will cover installing, configuring, and maintaining security Honeypots on Windows platforms. Book will specifically cover the popular open source Honeypot product called honeyd, and summarize other commercial Honeypot solutions. There are no computer security books covering Honeypots (or IDSs) as they run on Windows platforms. 
Developers who are tired of reading Unix and Linux documentation and newsgroups to get information on how to build and maintain a Windows-based Honeypot, then this book is for you. No longer will you have to rummage through Unix-only advice and utilities to pull out the information that related to your Windows deployment. No longer will you have to listen to some Unix head bash Microsoft and Bill Gates when all you wanted to know is why your Honeypot wasn’t working. Learn special tricks and troubleshooting hints to run a Windows-based Honeypot.