FlazX | Categories | Forum | Links | Blog | Login

Enter your search terms Submit search form

Nessus, Snort, & Ethereal Power Tools : Customizing Open Source Security Applications (Jay Beale's Open Source Security)

eBook Information

Nessus, Snort, & Ethereal Power Tools : Customizing Open Source Security Applications (Jay Beale's Open Source Security) ISBN  1597490202 Release Date  19 September 2005 Category  Networks Tags  snort,   nessus,   ethereal,   open source,   security,   power,   "open source",   "snort",   "power tools",   ether,   information security,   tool,   nessus, snort and ethereal power tools,   tools,   open,   linux security,   power tools,   security and power and tools,   ethereal packet sniffing,   nessus, snort, & ethereal,   "ethereal",   1597490202,   snor,   bea,   This book @Amazon  View Google Search Web flazx.com

Description If you have Snort, Nessus, and Ethereal up and running and now you're ready to customize, code, and torque these tools to their fullest potential, then this book is for you. The authors of this book provide the inside scoop on coding the most effective and efficient Snort rules, Nessus plug-ins with NASL, and Ethereal capture and display filters. When done with this book, you will be a master at coding your own tools to detect malicious traffic, scan for vulnerabilities, and capture only the packets YOU really care about. Each chapter contains dozens of working code examples. Snort is an amazingly flexible application with a rules-based engine allowing you to collect and correlate packets based on the rules you design. The Snort rules section of this book teaches you to read, write, and understand these rules for your IDS sensors. You will learn rule development schematics, proper testing procedures, techniques for enhancing the speed of your rules, and tips for using Berkeley Packet Filters and subnet masks within a rule. The Nessus Attack Scripting Language (NASL) allows you to create self contained scripts for vulnerability scanning using the Nessus engine (nessusd). NASL allows you to write plug-ins that perform network security checks and almost any other type of network-wide test. In this section, you will learn the intricacies of the "script description" and "script body," the NASL Protocol APIs, string manipulation, and more. Ethereal provides "capture filters," which allow you to capture only the packets you are interested in and "display filters," which allow you to specify which packets are then shown in Ethereal's Graphical User Interface. This section teaches you to write capture filters and how to work with tcpdump; host names and addresses; MAC addresses; ports; logical operations; protocols; and protocol fields. Other books on Networks From P2P and Grids to Services on the Web: Evolving Distributed Communities (Computer Communications and Networks) Multimedia Broadcasting and Multicasting in Mobile Networks Network Quality of Service Know It All (Morgan Kaufmann Know It All) Broadband Cable Access Networks, Volume 5: The HFC Plant (The Morgan Kaufmann Series in Networking) Data Communications and Networking (McGraw-Hill Forouzan Networking) JUNOS For Dummies (For Dummies (Computer/Tech)) Data Communications and Computer Networks: For Computer Scientists and Engineers High Performance Data Network Design (IDC Technology) Network Simulation Experiments Manual (The Morgan Kaufmann Series in Networking) IP-Traffic Theory and Performance (Signals and Communication Technology) End-to-End Quality of Service Over Heterogeneous Networks The All-New Switch Book: The Complete Guide to LAN Switching Technology Networks: Design and Management Developing IP-Based Services: Solutions for Service Providers and Vendors (The Morgan Kaufmann Series in Networking) Traffic Grooming for Optical Networks: Foundations, Techniques and Frontiers (Optical Networks)

nk