Intrusion Prevention and Active Response
Deploying Network and Host IPS
By- Michael Rash
- Angela Orebaugh, Washington, D.C. Senior Scientist in the Advanced Technology Research Center, Sytex, Inc., Washington, DC, USA
- Graham Clark
This book provides an introduction to the field of Intrusion Prevention and provides detailed information on various IPS methods and technologies. Specific methods are covered in depth, including both network and host IPS and response technologies such as port deactivation, firewall/router network layer ACL modification, session sniping, outright application layer data modification, system call interception, and application shims.
Audience
Technologists and Security Administrators.
Paperback, 550 Pages
Published: March 2005
Imprint: Syngress
ISBN: 978-1-932266-47-4
Contents
- Chapter 1: Introduction to Intrusion Prevention: Chapter 2: False Positives and Real Damage: Chapter 3: Data Link IPS Chapter 4: Network IPS Chapter 5: Transport IPS Chapter 6: Application Layer Responses Chapter 7: Host IPS Actions: Chapter 8: Hybrid IPS Actions: Chapter 9: Network Inline Data Modification
