Skip to Main Content
SSFIPS Securing Cisco Networks with Sourcefire Intrusion Prevention System Study Guide: Exam 500-285
book

SSFIPS Securing Cisco Networks with Sourcefire Intrusion Prevention System Study Guide: Exam 500-285

by Todd Lammle, Alex Tatistcheff, John Gay
October 2015
Intermediate to advanced content levelIntermediate to advanced
432 pages
9h 55m
English
Sybex
Content preview from SSFIPS Securing Cisco Networks with Sourcefire Intrusion Prevention System Study Guide: Exam 500-285

Chapter 7 Network-Based Malware Detection

THE SSFIPS EXAM TOPICS COVERED IN THIS CHAPTER INCLUDE THE FOLLOWING:

  • ✓ 6.0 Network-Based Malware Detection
  • ✓ 6.1 Describe the interface components used for analyzing malware events
  • ✓ 6.2 Understand the different techniques used to identify malware
  • ✓ 6.3 Describe the features of malware detection as used by the Cisco NGIPS, including communication, actions, and protocols

FireSIGHT's Advanced Malware Protection (AMP) is designed to tackle one of the worst and arguably most prevalent threat vectors today—malware! Nicknamed from the term malicious software, malware comes in a variety of vile flavors, from coded weapons fashioned to damage, control, or disable a computer system to programs that perform ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

CCIE Security v4.0 Practice Labs

CCIE Security v4.0 Practice Labs

Natalie Timms
CCNA Data Center DCICT 200-155 Official Cert Guide

CCNA Data Center DCICT 200-155 Official Cert Guide

Navaid Shamsee, David Klebanov, Hesham Fayed, Ahmed Afrose, Ozden Karakok

Publisher Resources

ISBN: 9781119155034Purchase book