Regular marked price: $39.99Discount Price: $26.39
Cost Savings: $13.60 (34%)Price fluctuation possible.
How soon does it ship: Normal ship time within one day
Shipping? Absolutely FREE if you qualify for Super Saver Shipping.
Type of bind: Paperback
Dewey Decimal Number: 005.8
EAN num: 9780596510305
Format: Illustrated
ISBN number: 0596510306
Label: O'Reilly Media, Ltd.
Manufacturer: O'Reilly Media, Ltd.
Quantity: 1
Page Count: 504
Printing Date: November 01, 2007
Publishing house: O'Reilly Media, Ltd.
Sale Popularity Level: 38142
Studio: O'Reilly Media, Ltd.
Other books you might be interested in perusing:
Editor's Notes and Comments:
Product Description:
How secure is your network? The best way to find out is to attack it. Network Security Assessment provides you with the tricks and tools professional security consultants use to identify and assess risks in Internet-based networks-the same penetration testing model they use to secure government, military, and commercial networks. With this book, you can adopt, refine, and reuse this testing model to design and deploy networks that are hardened and immune from attack.
Network Security Assessment demonstrates how a determined attacker scours Internet-based networks in search of vulnerable components, from the network to the application level. This new edition is up-to-date on the latest hacking techniques, but rather than focus on individual issues, it looks at the bigger picture by grouping and analyzing threats at a high-level. By grouping threats in this way, you learn to create defensive strategies against entire attack categories, providing protection now and into the future.
Network Security Assessment helps you assess: - Web services, including Microsoft IIS, Apache, Tomcat, and subsystems such as OpenSSL, Microsoft FrontPage, and Outlook Web Acess (OWA)
- Web application technologies, including ASP, JSP, PHP, middleware, and backend databases such as MySQL, Oracle, and Microsoft SQL Server
- Microsoft Windows networking components, including RPC, NetBIOS, and CIFS services
- SMTP, POP3, and IMAP email services
- IP services that provide secure inbound network access, including IPsec, Microsoft PPTP, and SSL VPNs
- Unix RPC services on Linux, Solaris, IRIX, and other platforms
- Various types of application-level vulnerabilities that hacker tools and scripts exploit
Assessment is the very first step any organization should take to start managing information risks correctly. With techniques to identify and assess risks in line with CESG CHECK and NSA IAM government standards, Network Security Assessment gives you a precise method to do just that.
User popularity level:
Rated by buyers 
-
This review is a comparison between the very first and second edition. Other readers have properly described the book and you won't find anything different.
The book is still very concise (its strength) and to the point. The previous edition had some links (or many I'd say) that were not working, or simply do not exist anymore. In this sense it's a good update.
Probably the author had to decide between waiting more and revamp an important part of the book, or publish this edition with no major updates or changes.
The book is still a good companion so buy it if it's not in your library. But if you have it wait for a third edition when all major updates in major operating systems take place.
Rated by buyers 
-
'Network Security Assessment: Know Your Network' is an absolute must buy for anyone that runs/admins a network and needs to know the tricks to keeping things safer in today's connected world. Warning right off the bat that this is a very niche market of reader and it's NOT NOT NOT for the regular developer or admin. This is heavy on the technical jargon and you better know all your acronyms like there is no tomorrow from TCP to IP to LDAP to xxx!!
From IIS to VPN to Databases and regular Windows usage there are tons of case studies and examples throughout that will help you plug leaks and keep the bad guys out. Here's a chapter overview:
01. Network Security Assessment Basics
02. Network Security Assessment Platform
03. Internet Host and Network Enumeration
04. IP Network Scanning
05. Assessing Remote Information Services
06. Assessing Web Servers
07. Assessing Web Applications
08. Assessing Remote Maintenance Services
09. Assessing Database Services
10. Assessing Windows Networking Services
11. Assessing Email Services
12. Assessing IP VPN Services
13. Assessing Unix RPC Services
14. Application-Level Risks
15. Running Nessus
16. Exploitation Frameworks
***** HIGHLY RECOMMENDED
Rated by buyers -
Chris McNab's NETWORK SECURITY ASSESSMENT appears in its second updated edition to cover the protocols for testing network security - by trying to attack it internally. Tricks and tools professional security consultants use to identify and correct risks in Internet-based networks are revealed in chapters covering everything from Windows networking components and Unix RPC services on various platforms to application-level vulnerabilities. Any collection catering to programmers or network managers needs NETWORK SECURITY ASSESSMENT in its latest updated second edition.
Rated by buyers -
explainsa variety of exploits and tells you how to harden your network. This book is very well researched and extremely well written and is reader friendly, as some security books leave the reader lost in techno babble, not this book however very easy reading it now sits on my desk as a ready reckoner.
Rated by buyers -
This is one of the few books that I have come across that focuses mainly on the innards of security assessments. The services based security and counter measures are helpful for threat modeling. This book is really great for people in the security risk and threat analysis for a quantitative and qualitative validation. Good book to help in setting up corporate security policy model.
Other people have already provided a good chapter wise run-down so I will skip that here...
Buy this book :)
Find other books like this one:
