Applied incident response / (Record no. 12674)
[ view plain ]
| 000 -LEADER | |
|---|---|
| fixed length control field | 04535cam a2200757 a 4500 |
| 001 - CONTROL NUMBER | |
| control field | on1136964952 |
| 003 - CONTROL NUMBER IDENTIFIER | |
| control field | OCoLC |
| 005 - DATE AND TIME OF LATEST TRANSACTION | |
| control field | 20240523125542.0 |
| 006 - FIXED-LENGTH DATA ELEMENTS--ADDITIONAL MATERIAL CHARACTERISTICS | |
| fixed length control field | m o d |
| 007 - PHYSICAL DESCRIPTION FIXED FIELD--GENERAL INFORMATION | |
| fixed length control field | cr un|---aucuu |
| 008 - FIXED-LENGTH DATA ELEMENTS--GENERAL INFORMATION | |
| fixed length control field | 200118s2020 inu o 001 0 eng d |
| 040 ## - CATALOGING SOURCE | |
| Original cataloging agency | EBLCP |
| Language of cataloging | eng |
| Description conventions | pn |
| Transcribing agency | EBLCP |
| Modifying agency | DG1 |
| -- | RECBK |
| -- | YDX |
| -- | UKMGB |
| -- | N$T |
| -- | OCLCF |
| -- | UKAHL |
| -- | OCLCQ |
| -- | DG1 |
| -- | OCLCQ |
| -- | OCLCO |
| -- | IEEEE |
| -- | K6U |
| -- | OCLCQ |
| -- | OCLCO |
| 015 ## - NATIONAL BIBLIOGRAPHY NUMBER | |
| National bibliography number | GBB9I6131 |
| Source | bnb |
| 016 7# - NATIONAL BIBLIOGRAPHIC AGENCY CONTROL NUMBER | |
| Record control number | 019610822 |
| Source | Uk |
| 019 ## - | |
| -- | 1136968985 |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| International Standard Book Number | 1119560284 |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| International Standard Book Number | 9781119560302 |
| Qualifying information | (electronic bk. ; |
| -- | oBook) |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| International Standard Book Number | 1119560306 |
| Qualifying information | (electronic bk. ; |
| -- | oBook) |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| International Standard Book Number | 9781119560319 |
| Qualifying information | (ePub ebook) |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| International Standard Book Number | 1119560314 |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| International Standard Book Number | 9781119560289 |
| Qualifying information | (electronic bk.) |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| Canceled/invalid ISBN | 9781119560265 |
| Qualifying information | (print) |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER | |
| Canceled/invalid ISBN | 1119560268 |
| 024 7# - OTHER STANDARD IDENTIFIER | |
| Standard number or code | 10.1002/9781119560302 |
| Source of number or code | doi |
| 029 1# - OTHER SYSTEM CONTROL NUMBER (OCLC) | |
| OCLC library identifier | AU@ |
| System control number | 000066480886 |
| 029 1# - OTHER SYSTEM CONTROL NUMBER (OCLC) | |
| OCLC library identifier | AU@ |
| System control number | 000066724003 |
| 029 1# - OTHER SYSTEM CONTROL NUMBER (OCLC) | |
| OCLC library identifier | CHNEW |
| System control number | 001077463 |
| 029 1# - OTHER SYSTEM CONTROL NUMBER (OCLC) | |
| OCLC library identifier | CHVBK |
| System control number | 582680123 |
| 029 1# - OTHER SYSTEM CONTROL NUMBER (OCLC) | |
| OCLC library identifier | UKMGB |
| System control number | 019610822 |
| 035 ## - SYSTEM CONTROL NUMBER | |
| System control number | (OCoLC)1136964952 |
| Canceled/invalid control number | (OCoLC)1136968985 |
| 037 ## - SOURCE OF ACQUISITION | |
| Stock number | 9781119560319 |
| Source of stock number/acquisition | Wiley |
| 037 ## - SOURCE OF ACQUISITION | |
| Stock number | 9820823 |
| Source of stock number/acquisition | IEEE |
| 050 #4 - LIBRARY OF CONGRESS CALL NUMBER | |
| Classification number | QA76.9.A25 |
| 082 04 - DEWEY DECIMAL CLASSIFICATION NUMBER | |
| Classification number | 005.8 |
| Edition number | 23 |
| 049 ## - LOCAL HOLDINGS (OCLC) | |
| Holding library | MAIN |
| 100 1# - MAIN ENTRY--PERSONAL NAME | |
| Personal name | Anson, Steve. |
| 245 10 - TITLE STATEMENT | |
| Title | Applied incident response / |
| Statement of responsibility, etc. | Steven Anson. |
| 260 ## - PUBLICATION, DISTRIBUTION, ETC. | |
| Place of publication, distribution, etc. | Indianapolis : |
| Name of publisher, distributor, etc. | Wiley, |
| Date of publication, distribution, etc. | 2020. |
| 300 ## - PHYSICAL DESCRIPTION | |
| Extent | 1 online resource (464 pages) |
| 336 ## - CONTENT TYPE | |
| Content type term | text |
| Content type code | txt |
| Source | rdacontent |
| 337 ## - MEDIA TYPE | |
| Media type term | computer |
| Media type code | c |
| Source | rdamedia |
| 338 ## - CARRIER TYPE | |
| Carrier type term | online resource |
| Carrier type code | cr |
| Source | rdacarrier |
| 505 0# - FORMATTED CONTENTS NOTE | |
| Formatted contents note | Prepare. The Threat Landscape -- Incident Readiness -- Respond. Remote Triage -- Remote Triage Tools -- Acquiring Memory -- Disk Imaging -- Network Security Monitoring -- Event Log Analysis -- Memory Analysis -- Malware Analysis -- Disk Forensics -- Lateral Movement Analysis -- Refine. Continuous Improvement -- Proactive Activities. |
| 500 ## - GENERAL NOTE | |
| General note | Includes index. |
| 588 0# - SOURCE OF DESCRIPTION NOTE | |
| Source of description note | Print version record. |
| 520 ## - SUMMARY, ETC. | |
| Summary, etc. | Incident response is critical for the active defense of any network, and incident responders need up-to-date, immediately applicable techniques with which to engage the adversary.''Applied Incident Response'details effective ways to respond to advanced attacks against local and remote network resources, 'providing proven response techniques and a framework through which to apply them.' As a starting point for new incident handlers, or as a technical reference for hardened IR veterans, this book details the latest techniques for responding to threats against your network, including: -Preparing your environment for effective incident response -Leveraging MITRE ATT & CK and threat intelligence for active network defense -Local and remote triage of systems using PowerShell, WMIC, and open-source tools -Acquiring RAM and disk images locally and remotely -Analyzing RAM with Volatility and Rekall -Deep-dive forensic analysis of system drives using open-source or commercial tools -Leveraging Security Onion and Elastic Stack for network security monitoring -Techniques for log analysis and aggregating high-value logs -Static and dynamic analysis of malware with YARA rules, FLARE VM, and Cuckoo Sandbox -Detecting and responding to lateral movement techniques, including pass-the-hash, pass-the-ticket, Kerberoasting, malicious use of PowerShell, and many more -Effective threat hunting techniques -Adversary emulation with Atomic Red Team -Improving preventive and detective controls. |
| 590 ## - LOCAL NOTE (RLIN) | |
| Local note | John Wiley and Sons |
| Provenance (VM) [OBSOLETE] | Wiley Online Library: Complete oBooks |
| 650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM | |
| Topical term or geographic name entry element | Computer security. |
| 650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM | |
| Topical term or geographic name entry element | Computer networks |
| General subdivision | Security measures. |
| 650 #2 - SUBJECT ADDED ENTRY--TOPICAL TERM | |
| Topical term or geographic name entry element | Computer Security |
| 650 #6 - SUBJECT ADDED ENTRY--TOPICAL TERM | |
| Topical term or geographic name entry element | S�ecurit�e informatique. |
| 650 #6 - SUBJECT ADDED ENTRY--TOPICAL TERM | |
| Topical term or geographic name entry element | R�eseaux d'ordinateurs |
| General subdivision | S�ecurit�e |
| -- | Mesures. |
| 650 #7 - SUBJECT ADDED ENTRY--TOPICAL TERM | |
| Topical term or geographic name entry element | COMPUTERS |
| General subdivision | Security |
| -- | Networking. |
| Source of heading or term | bisacsh |
| 650 #7 - SUBJECT ADDED ENTRY--TOPICAL TERM | |
| Topical term or geographic name entry element | Computer networks |
| General subdivision | Security measures |
| Source of heading or term | fast |
| 650 #7 - SUBJECT ADDED ENTRY--TOPICAL TERM | |
| Topical term or geographic name entry element | Computer security |
| Source of heading or term | fast |
| 776 08 - ADDITIONAL PHYSICAL FORM ENTRY | |
| Relationship information | Print version: |
| Main entry heading | Anson, Steve. |
| Title | Applied Incident Response. |
| Place, publisher, and date of publication | Newark : John Wiley & Sons, Incorporated, �2020 |
| International Standard Book Number | 9781119560265 |
| 856 40 - ELECTRONIC LOCATION AND ACCESS | |
| Uniform Resource Identifier | <a href="https://onlinelibrary.wiley.com/doi/book/10.1002/9781119560302">https://onlinelibrary.wiley.com/doi/book/10.1002/9781119560302</a> |
| 938 ## - | |
| -- | Askews and Holts Library Services |
| -- | ASKH |
| -- | AH36899991 |
| 938 ## - | |
| -- | Askews and Holts Library Services |
| -- | ASKH |
| -- | BDZ0042621356 |
| 938 ## - | |
| -- | ProQuest Ebook Central |
| -- | EBLB |
| -- | EBL6017672 |
| 938 ## - | |
| -- | EBSCOhost |
| -- | EBSC |
| -- | 2354902 |
| 938 ## - | |
| -- | Recorded Books, LLC |
| -- | RECE |
| -- | rbeEB00803475 |
| 938 ## - | |
| -- | YBP Library Services |
| -- | YANK |
| -- | 301056172 |
| 938 ## - | |
| -- | YBP Library Services |
| -- | YANK |
| -- | 16322785 |
| 994 ## - | |
| -- | 92 |
| -- | INLUM |
No items available.