Overview
Completely updates the previous edition to cover systems released between 2011 and 2017, including new operating systems (Windows 10, etc.)
Covers Windows Management Instrumentation—one of the hottest topics in cybersecurity—in detail, both defensively and offensively
Features defensive cybersecurity techniques, including how to use Sysmon to detect Mimikatz use on a domain and track that back to the attacker’s command and control server
Access this book
Tax calculation will be finalised at checkout
Other ways to access
Table of contents (21 chapters)
-
Front Matter
Keywords
About this book
Know how to set up, defend, and attack computer networks with this revised and expanded second edition.
You will learn to configure your network from the ground up, beginning with developing your own private virtual test environment, then setting up your own DNS server and AD infrastructure. You will continue with more advanced network services, web servers, and database servers and you will end by building your own web applications servers, including WordPress and Joomla!. Systems from 2011 through 2017 are covered, including Windows 7, Windows 8, Windows 10, Windows Server 2012, and Windows Server 2016 as well as a range of Linux distributions, including Ubuntu, CentOS, Mint, and OpenSUSE.
Key defensive techniques are integrated throughout and you will develop situational awareness of your network and build a complete defensive infrastructure, including log servers, network firewalls, web application firewalls, and intrusion detection systems.Of course, you cannot truly understand how to defend a network if you do not know how to attack it, so you will attack your test systems in a variety of ways. You will learn about Metasploit, browser attacks, privilege escalation, pass-the-hash attacks, malware, man-in-the-middle attacks, database attacks, and web application attacks.
What You’ll Learn
- Construct a testing laboratory to experiment with software and attack techniques
- Build realistic networks that include active directory, file servers, databases, web servers, and web applications such as WordPress and Joomla!
- Manage networks remotely with tools, including PowerShell, WMI, and WinRM
- Use offensive tools such as Metasploit, Mimikatz, Veil, Burp Suite, and John the Ripper
- Exploit networks starting from malware and initial intrusion to privilege escalation through password cracking and persistence mechanisms
- Defend networks by developing operational awareness using auditd and Sysmon to analyze logs, and deploying defensive tools such as the Snort intrusion detection system, IPFire firewalls, and ModSecurity web application firewalls
Who This Book Is For
This study guide is intended for everyone involved in or interested in cybersecurity operations (e.g., cybersecurity professionals, IT professionals, business professionals, and students)
Authors and Affiliations
About the author
Bibliographic Information
Book Title: Cyber Operations
Book Subtitle: Building, Defending, and Attacking Modern Computer Networks
Authors: Mike O'Leary
DOI: https://doi.org/10.1007/978-1-4842-4294-0
Publisher: Apress Berkeley, CA
eBook Packages: Professional and Applied Computing, Professional and Applied Computing (R0), Apress Access Books
Copyright Information: Mike O'Leary 2019
Softcover ISBN: 978-1-4842-4293-3Published: 01 March 2019
eBook ISBN: 978-1-4842-4294-0Published: 01 March 2019
Edition Number: 2
Number of Pages: XXXI, 1134
Number of Illustrations: 210 b/w illustrations
Topics: Security