book

Cybersecurity for Small Networks

Name: Cybersecurity for Small Networks
Author: Seth Enoka
ISBN: 9781718501485

by Seth Enoka

November 2022

Beginner

224 pages

6h 22m

English

No Starch Press

Read now

Unlock full access

Cover
Title Page
Copyright Page
Dedication
About the Author
Brief Contents
Contents in Detail
Acknowledgments
Introduction
How to Use This Book: What to ExpectRecommended (But Not Required) KnowledgeRecommended HardwareSummary
1: Getting Started with a Base Linux System and Network Map
Linux Operating Systems#1: Creating an Ubuntu Virtual MachineHypervisor OptionsVMware Workstation and VMware Player for WindowsVMware Fusion and VMware Fusion Player for macOSVirtualBox#2: Creating a Physical Linux SystemBootable USB on WindowsBootable USB on macOSUsing the Bootable USB#3: Creating a Cloud-Based Linux SystemFinalizing the Linux InstallationHardening Your Ubuntu System#4: Installing System Packages#5: Managing Linux Users#6: Securing Remote AccessGenerating SSH KeysRemote Login with SSH#7: Capturing VM ConfigurationsTaking Snapshots in VMwareTaking Snapshots in VirtualBoxNetwork Topology#8: Checking Your IP AddressOn WindowsOn a MacOn Linux#9: Creating a Network Map#10: Transferring FilesSummary

2: Architecting and Segmenting Your Network
Network DevicesHubsSwitchesRoutersCreating Trust ZonesPhysical SegmentationLogical Segmentation#11: Segmenting Your NetworkEthernet SegmentationSummary
3: Filtering Network Traffic with Firewalls
Types of Firewallsiptables#12: Installing iptablesiptables Firewall RulesConfiguring iptablesLogging iptables BehaviorpfSense#13: Installing the pfSense FirewallHardening pfSensepfSense Firewall Rules#14: Testing Your FirewallSummary
4: Securing Wireless Networks
#15: Disabling IPv6#16: Limiting Network DevicesCreating an Asset ListStatic IP AddressingMAC Address Filtering#17: Segmenting Your Network#18: Configuring Wireless AuthenticationWEPWPA/WPA2WPA3Summary
5: Creating a Virtual Private Network
Drawbacks of Third-Party VPNs and Remote Access ServicesOpenVPNEasyRSAWireguard#19: Creating a VPN with OpenVPNSet Up the Certificate AuthorityCreate the OpenVPN Server Certificate and KeyConfigure OpenVPN#20: Creating a VPN with WireguardInstalling WireguardSet Up the Key PairsConfigure WireguardTest Your VPNSummary
6: Improving Browsing and Privacy with the Squid Proxy
Why Use a Proxy?#21: Setting Up SquidConfiguring SquidConfiguring Devices to Use SquidTesting SquidBlocking and Allowing DomainsProtecting Personal Information with SquidDisabling Caching for Specific SitesSquid Proxy ReportsSummary
7: Blocking Internet Advertisements
Browser-Level Ad Blocking#22: Blocking Ads in Google Chrome#23: Blocking Ads in Mozilla Firefox#24: Controlling Brave’s Privacy Settings#25: Blocking Ads with Pi-HoleConfigure Pi-HoleUsing Pi-HoleConfigure DNS on Your EndpointsSummary
8: Detecting, Removing, and Preventing Malware
Microsoft Defender for WindowsChoosing Malware Detection and Antivirus ToolsAntivirus FarmSignatures and Heuristics#26: Installing Avast on macOS#27: Installing ClamAV on Linux#28: Using VirusTotal#29: Managing Patches and UpdatesWindows UpdatemacOS Software UpdateLinux Updates with apt#30: Installing AutomoxInstalling AutomoxUsing AutomoxSummary
9: Backing Up Your Data
Backup TypesDevising a Backup ScheduleOnsite and Offsite BackupsWhat to Back Up and What Storage to Use#31: Using Windows Backup#32: Using Windows Backup and Restore#33: Using macOS Time Machine#34: Using Linux duplicityCreating Local Backups with duplicityCreating Network Backups with duplicityRestoring duplicity BackupsAdditional duplicity ConsiderationsCloud Backup SolutionsBackblazeCarboniteVirtual Machine SnapshotsTesting and Restoring BackupsSummary
10: Monitoring Your Network with Detection and Alerting
Network Monitoring MethodsNetwork Traffic Access PointsSwitch Port Analyzers#35: Configuring a SPAN PortSecurity Onion#36: Building a Security Onion SystemInstalling Security Onion#37: Installing WazuhInstalling Wazuh on WindowsInstalling Wazuh on macOSInstalling Wazuh on Linux#38: Installing osqueryInstalling osquery on WindowsInstalling osquery on macOSInstalling osquery on LinuxA Network Security Monitoring Crash CourseUsing osqueryUsing WazuhUsing Security Onion as a SIEM ToolSummary
11: Tips for Managing User Security on Your Network
PasswordsPassword ManagersPassword Breach DetectionMultifactor AuthenticationBrowser Plug-insAdblock PlusGhosteryHTTPS EverywhereInternet of Things ConsiderationsAdditional ResourcesSummary
Index

Overview

This book is a straightforward series of projects that will teach you how to secure different facets of household or small-business networks from cyber attacks. Through guided, hands-on exercises, you'll quickly progress through several levels of security—from building a defensible network architecture to protecting your network from adversaries and monitoring for suspicious activity.

The first section will teach you how to segment a network into protected zones, set up a firewall, and mitigate wireless network security risks. Then, you’ll configure a VPN (virtual private network) to hide and encrypt network traffic and communications, set up proxies to speed up network performance and hide the source of traffic, and configure an antivirus. From there, you’ll implement back-up storage strategies, monitor and capture network activity using a variety of open-source tools, and learn tips to efficiently manage your security. By the end of this book, you’ll be armed with the skills necessary to effectively secure your small network with whatever resources you have available.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Computer Security Fundamentals, 5th Edition

Publisher Resources

ISBN: 9781098156633

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills