book

Mastering Defensive Security

by Cesar Bravo

January 2022

Beginner

528 pages

10h 49m

English

Packt Publishing

Read now

Unlock full access

ForewordContributorsAbout the authorAbout the reviewers
Who this book is forWhat this book coversTo get the most out of this bookDownload the color imagesConventions usedGet in touchShare Your Thoughts
Technical requirementsDeep dive into the core of cybersecurityThe cybersecurity triad Types of attacksManaging cybersecurity's legendary pain point: PasswordsPassword breachesSocial engineering attacks using compromised passwordsBrute-force attacksDictionary attacksCreating a secure passwordManaging passwords at the enterprise levelBonus trackMastering defense in depth Factors to consider when creating DiD modelsAsset identificationDefense by layersBonus trackComparing the blue and red teamsSummaryFurther reading
Technical requirements Understanding cybersecurity vulnerabilities and threatsPerforming a vulnerability assessment The vulnerability assessment processWhen should you check for vulnerabilities? Types of vulnerabilitiesUSB HID vulnerabilities Types of USB HID attacksA false sense of securityProtecting against USB HID attacksManaging cybersecurity risksRisk identificationRisk assessmentRisk responseRisk monitoringThe NIST Cybersecurity FrameworkIdentifyProtectDetectRespondRecoverCreating an effective Business Continuity Plan (BCP)Creating a Business Impact Analysis (BIA)Business Continuity Planning (BCP)Implementing a best-in-class DRPCreating a DRPImplementing the DRPSummaryFurther reading
Creating world-class cybersecurity policies and proceduresCybersecurity policiesCybersecurity proceduresThe CUDSE methodUnderstanding and achieving complianceTypes of regulationsAchieving complianceExploring, creating, and managing auditsInternal cybersecurity auditsExternal cybersecurity auditsData management during auditsTypes of cybersecurity auditWhat triggers an audit?Applying a CMMThe goals of a CMMCharacteristics of a good CMMThe structure of a good CMMAnalyzing the resultsAdvantages of a CMMSummaryFurther reading
Understanding layer 8 – the insider threat The inadvertent userThe malicious insiderHow do you spot a malicious insider?Protecting your infrastructure against malicious insidersMastering the art of social engineeringThe social engineering cycleSocial engineering techniquesTypes of social engineering attacksDefending against social engineering attacks (patching layer 8)Creating your training strategyAdmin rightsImplementing a strong BYOD policyPerforming random social engineering campaignsSummaryFurther reading
Technical requirements Advanced wireless tools for cybersecurityDefending from wireless attacksPentesting tools and methodsMetasploit frameworkSocial engineering toolkitexe2hexApplying forensics tools and methodsDealing with evidenceForensic toolsRecovering deleted filesDealing with APTsDefensive techniquesLeveraging security threat intelligence Threat intelligence 101Implementing threat intelligenceConverting a threat into a solutionThe problemThe solutionSummaryFurther reading
Technical requirements Applying Windows hardeningHardening by the infrastructure teamCreating a hardening checklistCreating a patching strategyThe complexity of patchingDistribution of tasks (patching roles and assignments)Distribution and deployment of patchesTypes of patchesApplying security to AD Secure administrative hostsWindows Server Security documentationMastering endpoint security Windows updatesWhy move to Windows 10?Physical securityAntivirus solutionsWindows Defender FirewallApplication controlURL filteringSpam filteringClient-facing systemsBackupsUsersSecuring the dataLeveraging encryption Configuring BitLockerSummary

Technical requirements Securing Unix servicesDefining the purpose of the serverSecure startup configurationManaging servicesApplying secure file permissions Understanding ownership and permissionsDefault permissionsPermissions in directories (folders)Changing default permissions with umaskPermissions hierarchyComparing directory permissionsChanging permissions and ownership of a single fileUseful commands to search for unwanted permissionsEnhancing the protection of the server by improving your access controlsViewing ACLsManaging ACLsDefault ACL on directoriesRemoving ACLs Enhanced access controlsConfiguring host-based firewallsUnderstanding iptablesConfiguring iptablesSSH brute-force protection with iptablesProtecting from port scanning with iptablesAdvanced management of logsLeveraging the logsSummaryFurther reading
Technical requirementsUsing the master tool of network mapping – NmapPhases of a cyber attackNmapNmap scriptsImproving the protection of wireless networksWireless network vulnerabilitiesUser's safety guide for wireless networksIntroducing WiresharkFinding users using insecure protocolsFTP, HTTP, and other unencrypted trafficWireshark for defensive securityWorking with IPS/IDSWhat is an IDS?What is an IPS?Free IDS/IPSIPS versus IDSSummary
Technical requirements Understanding physical security and associated threatsThe powerful LAN TurtleThe stealthy Plunder Bug LAN TapThe dangerous Packet SquirrelThe portable Shark JackThe amazing Screen CrabThe advanced Key CrocUSB threatsEquipment theftEnvironmental risksPhysical security mechanismsMastering physical securityClean desk policyPhysical security auditsSummaryFurther reading
Technical requirementsUnderstanding the Internet of ThingsThe risksThe vulnerabilitiesUnderstanding IoT networking technologiesLoRaWANZigbeeSigfoxBluetoothSecurity considerationsImproving IoT securityCreating cybersecurity hardware using IoT-enabled devicesRaspberry Pi firewall and intrusion detection systemDefensive security systems for industrial control systems (SCADA) Secure USB-to-USB copy machineCreating a $10 honeypotAdvanced monitoring of web apps and networksCreating an internet ad blockerAccess control and physical security systemsBonus track – Understanding the danger of unauthorized IoT devicesDetecting unauthorized IoT devicesDetecting a Raspberry PiDisabling rogue Raspberry Pi devicesSummaryFurther reading
Technical requirements Secure deployment and implementation of cloud applications Security by cloud modelsData security in the cloudSecuring Kubernetes and APIsCloud-native securityControlling access to the Kubernetes APIControlling access to kubeletPreventing containers from loading unwanted kernel modulesRestricting access to etcdAvoiding the use of alpha or beta features in productionThird-party integrationsHardening database servicesTesting your cloud securityAzure Security CenterAmazon CloudWatchAppDynamicsNessus vulnerability scannerInsightVMIntruderSummaryFurther reading
Technical requirements Gathering intelligence about your site/web applicationImportance of public data gatheringOpen Source IntelligenceHosting informationChecking data exposure with Google hacking (dorks)Leveraging DVWAInstalling DVWA on Kali LinuxOverviewing the most common attacks on web applicationsExploring XSS attacksUsing Burp SuiteBurp Suite versionsSetting up Burp Suite on KaliSQL injection attack on DVWAFixing a common error Brute forcing web applications' passwordsAnalyzing the resultsSummaryFurther reading
Technical requirements Dealing with vulnerabilitiesWho should be looking for vulnerabilities?Bug bounty programsInternal vulnerabilitiesVulnerability testing toolsUsing a vulnerability assessment scanner (OpenVAS)Authenticated testsInstalling OpenVASUsing OpenVASUpdating your feedsOverview of Nexpose CommunitySummaryFurther reading
Technical requirements Why should I analyze malware? Malware functionalityMalware objectivesMalware connectionsMalware backdoorsAffected systemsTypes and categories of malware analysis Static malware analysisDynamic malware analysisHybrid malware analysisStatic properties analysisInteractive behavior analysisFully automated analysisManual code reversingBest malware analysis toolsProcess ExplorerProcess Monitor ProcDOTGhidraPeStudioPerforming malware analysisSecurity measurementsExecuting the analysisSummaryFurther reading
Technical requirements Understanding the importance of logsLog filesLog managementThe importance of logsKnowing your enemy's best friend – MetasploitMetasploit Metasploit editionsInstalling ArmitageConfiguring Metasploit for the first timeInstalling Armitage (continued)Exploring ArmitageLaunching an attack with ArmitageExecuting MetasploitOther offensive hacking toolsSearchsploitsqlmapWeevelySummaryFurther reading
Introduction to digital forensicsForensics to recover deleted or missing dataDigital forensics on defensive securityWho should be in charge of digital forensics?The digital forensics processForensics platformsCAINESIFT WorkstationPALADINFinding evidenceSources of dataMobile forensicsDeviceless forensicsImportant data sources on mobile devicesTransporting mobile devicesManaging the evidence (from a legal perspective)ISO 27037Digital Evidence Policies and Procedures ManualFBI's Digital Evidence Policy GuideRegional Computer Forensics LaboratoryUS Cybersecurity & Infrastructure Security AgencySummaryFurther reading
Why bother with automation? Benefits of automationThe risks of ignoring automationTypes of automated attacksAccount aggregationAccount creationAd fraudCAPTCHA defeatCard crackingCardingCashing outCredential crackingCredential stuffingDenial of inventoryDoSExpeditingFingerprintingFootprintingScalpingSnipingScrapingSkewingSpammingToken crackingVulnerability scanningAutomation of cybersecurity tools using PythonLocal file searchBasic forensicsWeb scrapingNetwork security automationCybersecurity automation with the Raspberry PiAutomating threat intelligence gathering with a Fail2ban honeypot on a Raspberry PiAutomated internet monitoring system with the Raspberry PiSummaryFurther reading
Free cybersecurity templatesBusiness continuity plan and disaster recovery plan templatesRisk managementDesign and management of cybersecurity policies and proceduresMust-have web resourcesCyber threat or digital attack mapsCybersecurity certificationsCybersecurity news and blogsCybersecurity toolsPassword-related toolsIndustry-leading best practicesRegulations and standardsCybersecurity frameworks, standards, and moreSummaryFurther reading
Other Books You May EnjoyPackt is searching for authors like youShare Your Thoughts

Content preview from Mastering Defensive Security

Chapter 12: Mastering Web App Security

"Web applications are everywhere, attackers nowadays invest a lot of energy in understanding their attack surface and exploiting their vulnerabilities. We, on the other hand, need to do exactly the same."

– Cristian Rodríguez, Offensive Security Certified Professional (OSCP) | Offensive Security Web Expert (OSWE)

Indeed, we must protect our web applications, and that is why we created a super exciting chapter in which you will acquire all the knowledge needed to master the skills of securing web applications. First, we will start by showing you how much information others may know about your site or web application and the importance of obfuscating all that public information.

Then, it will be time to ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Start your free trial

Publisher Resources

ISBN: 9781800208162

Mastering Defensive Security

by Cesar Bravo

Chapter 12: Mastering Web App Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

You might also like

Defensive Security Handbook

Defensive Security Handbook, 2nd Edition

(ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide 9th Edition

ISC2 CISSP Certified Information Systems Security Professional Official Study Guide, 10th Edition

Publisher Resources

Chapter 12: Mastering Web App Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,and much more.

You might also like

Defensive Security Handbook

Defensive Security Handbook, 2nd Edition

(ISC)2 CISSP Certified Information Systems Security Professional Official Study Guide 9th Edition

ISC2 CISSP Certified Information Systems Security Professional Official Study Guide, 10th Edition

Publisher Resources

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.