Category: Books
Tags: Act, Advanced, Advanced Persistent Threats, Africa, Agency, APT, apt descriptions, APTs, Army, army counterintelligence, Asia, Attribution, behavioral profiling, Black Hat, Bot, BotNet, botnets, Bureau, Cat-and-mouse, Central, CIA, code decode, Counter, Counter-Exploitation, Counterintelligence, countermeasures, countries in europe, Cyber, cyber realm, Cyber Threat, Cyberwar, Deception, decoys, Defense, department of defense, disinformation, DoD, END, Enthralling, Espionage, Ethic, Ethical, Europe, Evade Detection, Exploit, Exploitation, FBI, Federal, Fred Feer, government sector, Hat, History, IDA, Implementation, independent consulting, Information, Intelligence, Law, law enforcement, Legal, malcode, Malicious Code, Malware, Middle East, Missions, Motivators, National, National Security, national security agency, NSA, Operational, Outcomes, Persistent, private sector work, Procedures, Profiling, RAF, RAND, realm, Reverse, Reverse Deception, Strategies, Studies, Tactics, Techniques, Threat, Threats, Tools, tradecraft, u s army, U.S., United States
A complete guide to understanding and fighting advanced persistent threats—today’s most destructive risk to enterprise security
Reverse Deception: Organized Cyber Threat Counter-Exploitation explains how to identify advanced persistent threats (APTs), categorize them according to risk level, and prioritize your actions accordingly by applying expert, field-tested private- and government-sector methods (NSA, FBI, and DOD).
APTs cannot be seen, spread invisibly, and then continue to live in an enterprise network, undetected. In this one-of-a-kind book, the authors explain how to get—and stay—ahead of today’s well-organized and extremely persistent brand of network enemies. The book describes the characteristics of malware and botnets, how they can morph, evade detection, and spin off decoys that live in-network, while appearing to have been cleaned up and debugged. This detailed guide then reveals how to detect the appearance of malicious code, decode the types of enemies they originate from, and finally, how to extricate malcode and deflect its future entry into networks.
Reverse Deception: Organized Cyber Threat Counter-Exploitation features:
- Full coverage of the #1 feared type of network attack today, the APT
- Descriptions of cyber espionage tactics seen in the U.S. and internationally, with comparisons of the types of countermeasures permissible by law in the U.S. and Asia versus less strict countries in Europe, the Middle East, and Africa
- Enthralling case studies and true stories from the authors’ FBI, DOD, NSA, and private sector work
- Foreword by Fred Feer, a security professional with 40 years’ experience with the U.S. Army counterintelligence, CIA, RAND, and independent consulting
- Complete coverage of key aspects of deception, counter-deception, behavioral profiling, and security within the cyber realm
- Cat-and-mouse strategies from the best in the game—explains how to implement deception and disinformation techniques against a variety of incoming threats aimed at enticing adversaries out into the open
- A fresh perspective on innovative, field-tested ideas for successfully countering current digital threats—plus expected characteristics of the next threats to come
- Legal explanations of capabilities, limitations, and requirements for assisting law enforcement investigations
Coverage includes:
Deception Throughout History to Today; The Applications & Goals of Cyber Counterintelligence; The Missions and Outcomes of Criminal Profiling; Legal & Ethical Aspects of Deception; Attack Tradecraft; Operational Deception; Tools, Tactics & Procedures; Attack Attribution; Black Hat Motivators; Understanding Advanced Persistent Threats; When & When Not to Act; Implementation & Validation Tactics
Price: $40.00
Click here to buy from Amazon
Ever thought of using the time-tested tactics and techniques of a ninja to understand the mind of today’s ninja, the hacker? As a penetration tester or security consultant you no doubt perform tests both externally and internally for your clients that include both physical and technical tests. Throw traditional pen testing methods out the window for now and see how thinking and acting like a ninja can actually grant you quicker and more complete access to a company’s assets. Get in before the hacker does by thinking outside of the box with these unorthodox techniques. Use all of the tools that the ninja has at his side such as disguise, espionage, stealth, and concealment. Learn how to benefit from these by laying your plans, impersonating employees, infiltrating via alarm system evasion, discovering weak points and timing, spyware and keylogging software, and log manipulation and logic bombs. And, really, don’t you want to be a ninja for a day just because they’re cool? Let this book be your excuse!