Search icon Close icon
Search icon CANCEL
Subscription
0
Cart icon
Your Cart (0 item)
Close icon
You have no products in your basket yet
Save more on your purchases! discount-offer-chevron-icon
Savings automatically calculated. No voucher code required.
Checkout

Change country

Modal Close icon
Country selected Country selected
country flag United States
Country selected
country flag Great Britain
Country selected
country flag India
Country selected
country flag Germany
Country selected
country flag France
Country selected
country flag Canada
Country selected
country flag Russia
Country selected
country flag Spain
Country selected
country flag Brazil
Country selected
country flag Australia
Country selected
country flag South Africa
Country selected
country flag Thailand
Country selected
country flag Ukraine
Country selected
country flag Switzerland
Country selected
country flag Slovakia
Country selected
country flag Luxembourg
Country selected
country flag Hungary
Country selected
country flag Romania
Country selected
country flag Denmark
Country selected
country flag Ireland
Country selected
country flag Estonia
Country selected
country flag Belgium
Country selected
country flag Italy
Country selected
country flag Finland
Country selected
country flag Cyprus
Country selected
country flag Lithuania
Country selected
country flag Latvia
Country selected
country flag Malta
Country selected
country flag Netherlands
Country selected
country flag Portugal
Country selected
country flag Slovenia
Country selected
country flag Sweden
Country selected
country flag Argentina
Country selected
country flag Colombia
Country selected
country flag Ecuador
Country selected
country flag Indonesia
Country selected
country flag Mexico
Country selected
country flag New Zealand
Country selected
country flag Norway
Country selected
country flag South Korea
Country selected
country flag Taiwan
Country selected
country flag Turkey
Country selected
country flag Czechia
Country selected
country flag Austria
Country selected
country flag Greece
Country selected
country flag Isle of Man
Country selected
country flag Bulgaria
Country selected
country flag Japan
Country selected
country flag Philippines
Country selected
country flag Poland
Country selected
country flag Singapore
Country selected
country flag Egypt
Country selected
country flag Chile
Country selected
country flag Malaysia
Country selected
Arrow left icon
All Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Newsletter Hub
Free Learning
Arrow right icon
timer SALE ENDS IN
0 Days
:
00 Hours
:
00 Minutes
:
00 Seconds
Arrow up icon
GO TO TOP
Cybersecurity Blue Team Toolkit

You're reading from   Cybersecurity Blue Team Toolkit A practical handbook to cybersecurity for both tech and non-tech professionals

Arrow left icon
Product type Paperback
Published in Apr 2019
Publisher Wiley
ISBN-13 9781119552932
Length 288 pages
Edition 1st Edition
Tools
Concepts
Arrow right icon
Author (1):
Arrow left icon
Nadean H. Tanner Nadean H. Tanner
Author Profile Icon Nadean H. Tanner
Nadean H. Tanner
Nadean H. Tanner has been in the technology industry for over 20 years in a variety of positions from marketing to training to web development to hardware. She has worked in academia as an IT director and a postgraduate technology instructor. She has also been a trainer and consultant in advanced cybersecurity for Fortune 500 companies as well as the U.S. Department of Defense.
Read more
See other products by Nadean H. Tanner
Arrow right icon
View More author details
Toc

Table of Contents (20) Chapters Close

1. Cover FREE CHAPTER
2. Foreword
3. Introduction
4. CHAPTER 1: Fundamental Networking and Security Tools 5. CHAPTER 2: Troubleshooting Microsoft Windows 6. CHAPTER 3: Nmap—The Network Mapper 7. CHAPTER 4: Vulnerability Management 8. CHAPTER 5: Monitoring with OSSEC 9. CHAPTER 6: Protecting Wireless Communication 10. CHAPTER 7: Wireshark 11. CHAPTER 8: Access Management 12. CHAPTER 9: Managing Logs 13. CHAPTER 10: Metasploit 14. CHAPTER 11: Web Application Security 15. CHAPTER 12: Patch and Configuration Management 16. CHAPTER 13: Securing OSI Layer 8 17. CHAPTER 14: Kali Linux 18. CHAPTER 15: CISv7 Controls and Best Practices 19. Index
20. End User License Agreement

CHAPTER 5
Monitoring with OSSEC

WHAT YOU WILL LEARN IN THIS CHAPTER:

  • Log‐Based Intrusion Detection Systems
  • Agents
  • Log Analysis

Open Source Security (OSSEC) is a free, open‐source, host‐based intrusion detection system (HIDS). Daniel Cid, the author of OSSEC, often refers to it in the log analysis portion of OSSEC as a log‐based intrusion detection system (LIDS). Log analysis for intrusion detection is the process of using the recorded events to detect attacks on a specific environment.

With the proper agents installed on your assets and logs being processed by OSSEC, you meet the criteria for another CIS control. CIS Control 6 is the maintenance, monitoring, and analysis of logs. You must ensure that logging is enabled locally on your systems and it is actively being monitored. Sometimes logging is the only record or evidence of a successful attack. Without solid logs, an attack may go undetected, and damage can be ongoing for months, if not years. Not only...

lock icon The rest of the chapter is locked
arrow left Previous Section
Section 1 of 4
Next Section arrow right
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Sign up now
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Start free trial
Renews at £13.99/month. Cancel anytime

Authors (1)

Profile icon Nadean H. Tanner
Nadean H. Tanner
Nadean H. Tanner has been in the technology industry for over 20 years in a variety of positions from marketing to training to web development to hardware. She has worked in academia as an IT director and a postgraduate technology instructor. She has also been a trainer and consultant in advanced cybersecurity for Fortune 500 companies as well as the U.S. Department of Defense.
Read more
See other products by Nadean H. Tanner
Visually different images

Personalised recommendations for you

Based on your interests and search pattern
Left arrow icon
Cloud Security Handbook
Cloud Security Handbook
Read more
This book provides complete coverage of every cloud security aspect—from initial design to ongoing maintenance. Packed with best practices, it helps you smoothly transition to the public cloud, while keeping your environments secure and compliant.
Read more
Apr 2025 16h 4m
CompTIA CySA+ (CS0-003) Certification Guide
CompTIA CySA+ (CS0-003) Certification Guide
Read more
Prepare for CompTIA CySA+ (CS0-003) exam with this study guide—covering security ops, incident response, and vulnerability management in depth to level up your cybersecurity career. Includes exam-style questions, 2 practice tests, and flashcards.
Read more
Apr 2025 24h 44m
Cyber Security Kill Chain - Tactics and Strategies
Cyber Security Kill Chain - Tactics and Strategies
Read more
Learn how the cyber kill chain, a structured model that outlines the stages of a cyberattack, guides you through understanding threat actor behaviors and bolstering their ability to defend against evolving cyber threats.
Read more
May 2025 10h 16m
Right arrow icon