Table of Contents

Search in book...
Toggle Font Controls
Create new playlist

Name your new playlist

Playlist description (optional)
Sign In

Email address

Password

Forgot Password?

or

Continue with Facebook

Continue with Google
Sign Up

Full Name

Email address

Confirm Email Address

Password

or

Continue with Facebook

Continue with Google

Previous Chapter

Contents at a Glance

About the Author

Table of Contents

Introduction

Chapter 1: Introduction to Computer Security

How Seriously Should You Take Threats to Network Security?

Identifying Types of Threats

Compromising System Security

Session Hijacking

Insider Threats

Assessing the Likelihood of an Attack on Your Network

Basic Security Terminology

Professional Terms

Concepts and Approaches

How Do Legal Issues Impact Network Security?

Online Security Resources

Microsoft Security Advisor

Test Your Skills

Chapter 2: Networks and the Internet

The Physical Connection: Local Networks

Faster Connection Speeds

Other Wireless Protocols

Data Transmission

How the Internet Works

Uniform Resource Locators

What Is a Packet?

Basic Communications

History of the Internet

Basic Network Utilities

Other Network Devices

Advanced Network Communications Topics

Media Access Control (MAC) Addresses

Test Your Skills

Chapter 3: Cyber Stalking, Fraud, and Abuse

How Internet Fraud Works

Investment Offers

Real Cyber Stalking Cases

How to Evaluate Cyber Stalking

Crimes Against Children

Laws About Internet Fraud

Protecting Yourself Against Cybercrime

Protecting Against Investment Fraud

Protecting Against Identity Theft

Secure Browser Settings

Protecting Against Auction Fraud

Protecting Against Online Harassment

Test Your Skills

Chapter 4: Denial of Service Attacks

Illustrating an Attack

Distributed Reflection Denial of Service Attacks

Common Tools Used for DoS Attacks

Low Orbit Ion Cannon

Specific DoS Attacks

TCP SYN Flood Attacks

Smurf IP Attacks

UDP Flood Attacks

ICMP Flood Attacks

The Ping of Death

Teardrop Attacks

DHCP Starvation

HTTP POST DoS Attacks

Registration DoS Attacks

Login DoS Attacks

Real-World Examples of DoS Attacks

Boston Globe Attack

Memcache Attacks

How to Defend Against DoS Attacks

Test Your Skills

Chapter 5: Malware

How a Virus Spreads

Types of Viruses

The Impact of Viruses

Rules for Avoiding Viruses

The Buffer-Overflow Attack

The Sasser Virus/Buffer Overflow

Legal Uses of Spyware

How Is Spyware Delivered to a Target System?

Obtaining Spyware Software

Other Forms of Malware

Malicious Web-Based Code

Advanced Persistent Threats

Detecting and Eliminating Viruses and Spyware

Antivirus Software

Remediation Steps

Test Your Skills

Chapter 6: Techniques Used by Hackers

Basic Terminology

The Reconnaissance Phase

Passive Scanning Techniques

Active Scanning Techniques

SQL Script Injection

Cross-Site Scripting

Cross-Site Request Forgery

Directory Traversal

Cookie Poisoning

Wireless Attacks

Cell Phone Attacks

Password Cracking

Malware Creation

Windows Hacking Techniques

Penetration Testing

The NSA Information Assessment Methodology

PCI Penetration Testing Standard

Test Your Skills

Chapter 7: Industrial Espionage in Cyberspace

What Is Industrial Espionage?

Information as an Asset

Real-World Examples of Industrial Espionage

Example 1: Houston Astros

Example 2: University Trade Secrets

Example 3: Nuclear Secrets

Example 4: Uber

Example 5: Foreign Governments and Economic Espionage

Trends in Industrial Espionage

Industrial Espionage and You

How Does Espionage Occur?

Low-Tech Industrial Espionage

Spyware Used in Industrial Espionage

Steganography Used in Industrial Espionage

Phone Taps and Bugs

Protecting Against Industrial Espionage

The Industrial Espionage Act

Test Your Skills

Chapter 8: Encryption

Cryptography Basics

History of Encryption

The Caesar Cipher

Multi-Alphabet Substitution

Binary Operations

Modern Cryptography Methods

Single-Key (Symmetric) Encryption

Modification of Symmetric Methods

Public Key (Asymmetric) Encryption

Legitimate Versus Fraudulent Encryption Methods

Digital Signatures

Historical Steganography

Steganography Methods and Tools

Frequency Analysis

Modern Cryptanalysis Methods

Cryptography Used on the Internet

Quantum Computing Cryptography

Test Your Skills

Chapter 9: Computer Security Technology

How Does a Virus Scanner Work?

Virus-Scanning Techniques

Commercial Antivirus Software

Benefits and Limitations of Firewalls

Firewall Types and Components

Firewall Configurations

Commercial and Free Firewall Products

IDS Categorization

Identifying an Intrusion

Database Activity Monitoring

Other Preemptive Techniques

Digital Certificates

Virtual Private Networks

Point-to-Point Tunneling Protocol

Layer 2 Tunneling Protocol

Wired Equivalent Privacy

Wi-Fi Protected Access

Test Your Skills

Chapter 10: Security Policies

What Is a Policy?

Defining User Policies

Installing/Uninstalling Software

Instant Messaging

Desktop Configuration

Bring Your Own Device

Final Thoughts on User Policies

Defining System Administration Policies

Departing Employees

Change Requests

Security Breaches

Virus Infection

Intrusion by a Hacker

Defining Access Control

Development Policies

Standards, Guidelines, and Procedures

Data Classification

Disaster Recovery

Disaster Recovery Plan

Business Continuity Plan

Impact Analysis

Disaster Recovery and Business Continuity Standards

Fault Tolerance

Payment Card Industry Data Security Standards

Test Your Skills

Chapter 11: Network Scanning and Vulnerability Scanning

Basics of Assessing a System

Securing Computer Systems

Securing an Individual Workstation

Securing a Server

Securing a Network

Scanning Your Network

Getting Professional Help

Test Your Skills

Chapter 12: Cyber Terrorism and Information Warfare

Actual Cases of Cyber Terrorism

The Chinese Eagle Union

China’s Advanced Persistent Threat

India and Pakistan

Russian Hackers

Weapons of Cyber Warfare

StopGeorgia.ru Malware

NSA ANT Catalog

Economic Attacks

Military Operations Attacks

General Attacks

Supervisory Control and Data Acquisitions (SCADA)

Information Warfare

Information Control

Positive Trends

Negative Trends

Defense Against Cyber Terrorism

Terrorist Recruiting and Communication

TOR and the Dark Web

Test Your Skills

Chapter 13: Cyber Detective

General Searches

Court Records and Criminal Checks

Sex Offender Registries

Civil Court Records

Other Resources

Test Your Skills

Chapter 14: Introduction to Forensics

General Guidelines

Don’t Touch the Suspect Drive

Image a Drive with Forensic Toolkit

Can You Ever Conduct Forensics on a Live Machine?

Secure the Evidence

Chain of Custody

FBI Forensics Guidelines

U.S. Secret Service Forensics Guidelines

EU Evidence Gathering

Scientific Working Group on Digital Evidence

Locard’s Principle of Transference

Finding Evidence on the PC

Finding Evidence in the Browser

Finding Evidence in System Logs

Getting Back Deleted Files

Operating System Utilities

The Windows Registry

Specific Entries

Mobile Forensics: Cell Phone Concepts

Cell Concepts Module

Cellular Networks

What You Should Look For

The Need for Forensic Certification

Expert Witnesses

Federal Rule 702

Additional Types of Forensics

Network Forensics

Virtual Forensics

Test Your Skills

Chapter 15: Cybersecurity Engineering

Defining Cybersecurity Engineering

Cybersecurity and Systems Engineering

Applying Engineering to Cybersecurity

Misuse Case Diagram

Security Sequence Diagram

Data Interface Diagram

Security Block Diagram

Test Your Skills

Appendix A: Resources

Appendix B: Answers to the Multiple Choice Questions

..................Content has been hidden....................

You can't read the all page of ebook, please click here login for view all page.