Intrusion Prevention and Active Response
Deploying Network and Host IPSBy
- Michael Rash
- Angela Orebaugh
- Graham Clark
This book provides an introduction to the field of Intrusion Prevention and provides detailed information on various IPS methods and technologies. Specific methods are covered in depth, including both network and host IPS and response technologies such as port deactivation, firewall/router network layer ACL modification, session sniping, outright application layer data modification, system call interception, and application shims.
Technologists and Security Administrators.
Paperback, 550 Pages
Published: March 2005
- Chapter 1: Introduction to Intrusion Prevention: Chapter 2: False Positives and Real Damage: Chapter 3: Data Link IPS Chapter 4: Network IPS Chapter 5: Transport IPS Chapter 6: Application Layer Responses Chapter 7: Host IPS Actions: Chapter 8: Hybrid IPS Actions: Chapter 9: Network Inline Data Modification