Intrusion Prevention and Active Response

Deploying Network and Host IPS

By

  • Michael Rash
  • Angela Orebaugh, Washington, D.C. Senior Scientist in the Advanced Technology Research Center, Sytex, Inc., Washington, DC, USA
  • Graham Clark

This book provides an introduction to the field of Intrusion Prevention and provides detailed information on various IPS methods and technologies. Specific methods are covered in depth, including both network and host IPS and response technologies such as port deactivation, firewall/router network layer ACL modification, session sniping, outright application layer data modification, system call interception, and application shims.
View full description

Audience

Technologists and Security Administrators.

 

Book information

  • Published: March 2005
  • Imprint: SYNGRESS
  • ISBN: 978-1-932266-47-4


Table of Contents

Chapter 1: Introduction to Intrusion Prevention: Chapter 2: False Positives and Real Damage: Chapter 3: Data Link IPS Chapter 4: Network IPS Chapter 5: Transport IPS Chapter 6: Application Layer Responses Chapter 7: Host IPS Actions: Chapter 8: Hybrid IPS Actions: Chapter 9: Network Inline Data Modification