Windows Security Monitoring : Scenarios and Patterns - Andrei Miroshnikov
eTextbook alternate format product

Instant online reading.
Don't wait for delivery!

Windows Security Monitoring

Scenarios and Patterns

By: Andrei Miroshnikov

Paperback | 28 March 2018 | Edition Number 1

At a Glance

Paperback


RRP $82.95

$55.25

33%OFF

or 4 interest-free payments of $13.81 with

 or 

Aims to ship in 7 to 10 business days

When will this arrive by?
Enter delivery postcode to estimate

Dig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security

Written by a former Microsoft security program manager, DEFCON "Forensics CTF" village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating system′s event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenario–based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities.

This book is based on the author′s experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity.

Learn to:

  • Implement the Security Logging and Monitoring policy
  • Dig into the Windows security auditing subsystem
  • Understand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system

About the Author

Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference "Forensics CTF" village and has been a speaker at Microsoft′s Bluehat security conference. In addition, Andrei is an author of the "Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference" and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.

More in Computer Networking & Communications

Microsoft Teams For Dummies - Rosemarie Withee

RRP $49.95

$38.75

22%
OFF
Data Science from Scratch : First Principles with Python - Joel Grus
Computer Networking, Global Edition : 8th edition - James Kurose

RRP $180.95

$142.25

21%
OFF
Metasploit, 2nd Edition - Jim O'gorman
Cybersecurity All-in-One For Dummies : For Dummies - Joseph Steinberg
Network Security Assessment : Know Your Network : 3rd Edition - Chris Mcnab
Wireless Communication Networks and Systems, Global Edition - Cory Beard
Networking All-in-One For Dummies : 8th edition - Doug Lowe

RRP $86.25

$60.50

30%
OFF
Learning Agile : Understanding Scrum, XP, Lean, and Kanban - Andrew Stellman
Hackers & Painters - Paul Graham

RRP $47.50

$26.50

44%
OFF
Business Data Communications and Networking : 14th Edition - Jerry FitzGerald
Cybersecurity For Dummies : 2nd edition - Joseph Steinberg

RRP $52.95

$37.25

30%
OFF
Microsoft 365 For Dummies : For Dummies (Computer/Tech) - Jennifer Reed