Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Mastering Defensive Security
  • Table Of Contents Toc
  • Feedback & Rating feedback
Mastering Defensive Security

Mastering Defensive Security

By : Cesar Bravo
4.9 (14)
Buy this Book
close
close
Mastering Defensive Security

Mastering Defensive Security

4.9 (14)
By: Cesar Bravo
Buy this Book

Overview of this book

Every organization has its own data and digital assets that need to be protected against an ever-growing threat landscape that compromises the availability, integrity, and confidentiality of crucial data. Therefore, it is important to train professionals in the latest defensive security skills and tools to secure them. Mastering Defensive Security provides you with in-depth knowledge of the latest cybersecurity threats along with the best tools and techniques needed to keep your infrastructure secure. The book begins by establishing a strong foundation of cybersecurity concepts and advances to explore the latest security technologies such as Wireshark, Damn Vulnerable Web App (DVWA), Burp Suite, OpenVAS, and Nmap, hardware threats such as a weaponized Raspberry Pi, and hardening techniques for Unix, Windows, web applications, and cloud infrastructures. As you make progress through the chapters, you'll get to grips with several advanced techniques such as malware analysis, security automation, computer forensics, and vulnerability assessment, which will help you to leverage pentesting for security. By the end of this book, you'll have become familiar with creating your own defensive security tools using IoT devices and developed advanced defensive security skills.
Table of Contents (23 chapters)
close
close
close
Preface
Preface
Who this book is for
What this book covers
To get the most out of this book
Download the color images
Conventions used
Get in touch
Share Your Thoughts
1
Section 1: Mastering Defensive Security Concepts
Section 1: Mastering Defensive Security Concepts
Free Chapter
2
Chapter 1: A Refresher on Defensive Security Concepts
Chapter 1: A Refresher on Defensive Security Concepts
Technical requirements
Deep dive into the core of cybersecurity
Managing cybersecurity's legendary pain point: Passwords
Mastering defense in depth
Comparing the blue and red teams
Summary
Further reading
3
Chapter 2: Managing Threats, Vulnerabilities, and Risks
Chapter 2: Managing Threats, Vulnerabilities, and Risks
Technical requirements
Understanding cybersecurity vulnerabilities and threats
Managing cybersecurity risks
The NIST Cybersecurity Framework
Creating an effective Business Continuity Plan (BCP)
Implementing a best-in-class DRP
Summary
Further reading
4
Chapter 3: Comprehending Policies, Procedures, Compliance, and Audits
Chapter 3: Comprehending Policies, Procedures, Compliance, and Audits
Creating world-class cybersecurity policies and procedures
Understanding and achieving compliance
Exploring, creating, and managing audits
Applying a CMM
Summary
Further reading
5
Chapter 4: Patching Layer 8
Chapter 4: Patching Layer 8
Understanding layer 8 – the insider threat
Mastering the art of social engineering
Defending against social engineering attacks (patching layer 8)
Summary
Further reading
6
Chapter 5: Cybersecurity Technologies and Tools
Chapter 5: Cybersecurity Technologies and Tools
Technical requirements
Advanced wireless tools for cybersecurity
Pentesting tools and methods
Applying forensics tools and methods
Dealing with APTs
Leveraging security threat intelligence
Converting a threat into a solution
Summary
Further reading
7
Section 2: Applying Defensive Security
Section 2: Applying Defensive Security
8
Chapter 6: Securing Windows Infrastructures
Chapter 6: Securing Windows Infrastructures
Technical requirements
Applying Windows hardening
Creating a patching strategy
Applying security to AD
Mastering endpoint security
Leveraging encryption
Summary
9
Chapter 7: Hardening a Unix Server
Chapter 7: Hardening a Unix Server
Technical requirements
Securing Unix services
Applying secure file permissions
Enhancing the protection of the server by improving your access controls
Configuring host-based firewalls
Advanced management of logs
Summary
Further reading
10
Chapter 8: Enhancing Your Network Defensive Skills
Chapter 8: Enhancing Your Network Defensive Skills
Technical requirements
Using the master tool of network mapping – Nmap
Improving the protection of wireless networks
Introducing Wireshark
Working with IPS/IDS
Summary
11
Chapter 9: Deep Diving into Physical Security
Chapter 9: Deep Diving into Physical Security
Technical requirements
Understanding physical security and associated threats
Physical security mechanisms
Mastering physical security
Summary
Further reading
12
Chapter 10: Applying IoT Security
Chapter 10: Applying IoT Security
Technical requirements
Understanding the Internet of Things
Understanding IoT networking technologies
Improving IoT security
Creating cybersecurity hardware using IoT-enabled devices
Bonus track – Understanding the danger of unauthorized IoT devices
Summary
Further reading
13
Chapter 11: Secure Development and Deployment on the Cloud
Chapter 11: Secure Development and Deployment on the Cloud
Technical requirements
Secure deployment and implementation of cloud applications
Securing Kubernetes and APIs
Hardening database services
Testing your cloud security
Summary
Further reading
14
Chapter 12: Mastering Web App Security
Chapter 12: Mastering Web App Security
Technical requirements
Gathering intelligence about your site/web application
Leveraging DVWA
Overviewing the most common attacks on web applications
Using Burp Suite
SQL injection attack on DVWA
Brute forcing web applications' passwords
Summary
Further reading
15
Section 3: Deep Dive into Defensive Security
Section 3: Deep Dive into Defensive Security
16
Chapter 13: Vulnerability Assessment Tools
Chapter 13: Vulnerability Assessment Tools
Technical requirements
Dealing with vulnerabilities
Using a vulnerability assessment scanner (OpenVAS)
Overview of Nexpose Community
Summary
Further reading
17
Chapter 14: Malware Analysis
Chapter 14: Malware Analysis
Technical requirements
Why should I analyze malware?
Types and categories of malware analysis
Best malware analysis tools
Performing malware analysis
Summary
Further reading
18
Chapter 15: Leveraging Pentesting for Defensive Security
chevron up
Chapter 15: Leveraging Pentesting for Defensive Security
Technical requirements
Understanding the importance of logs
Knowing your enemy's best friend – Metasploit
Other offensive hacking tools
Summary
Further reading
19
Chapter 16: Practicing Forensics
Chapter 16: Practicing Forensics
Introduction to digital forensics
Digital forensics on defensive security
Forensics platforms
Finding evidence
Mobile forensics
Managing the evidence (from a legal perspective)
Summary
Further reading
20
Chapter 17: Achieving Automation of Security Tools
Chapter 17: Achieving Automation of Security Tools
Why bother with automation?
Types of automated attacks
Automation of cybersecurity tools using Python
Cybersecurity automation with the Raspberry Pi
Summary
Further reading
21
Chapter 18: The Master's Compilation of Useful Resources
Chapter 18: The Master's Compilation of Useful Resources
Free cybersecurity templates
Must-have web resources
Industry-leading best practices
Summary
Further reading
Why subscribe?
22
Other Books You May Enjoy
Other Books You May Enjoy
Packt is searching for authors like you
Share Your Thoughts

Chapter 15: Leveraging Pentesting for Defensive Security

"Companies have to invest time and resources in defensive security to identify new vulnerabilities that allow them to anticipate the movements of the adversary. As Sun Tzu says in The Art of War: "To know your enemy, you must become your enemy."

– Dagoberto Herrera, University Dean

While pentesting is a task normally reserved for offensive security teams (also called red teams), the truth is that as a master in defensive security, you also need to know at least the basics of pentesting.

In fact, this chapter is not aimed to make you a pentester. Instead, the goal of this chapter is to show you the most popular tools used by pentesters (and attackers) to show you how easy and dangerous those attacks can be.

The chapter starts with some mandatory theory to be able to then move on to some exacting labs in which you can experiment using your own hands with the simplicity and power of those offensive...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Section 1
Next Section
bookmark search playlist font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY