Author(s) Name: Michael S. Collins
This book examines the process of collecting and organizing data, various tools for analysis, and several different analytic scenarios and techniques. It’s ideal for network administrators and operational security analysts familiar with scripting.
Table of Contents
1. Sensors and Detectors: An Introduction
2. Network Sensors
3. Host and Service Sensors: Logging Traffic at the Source
4. Data Storage for Analysis: Relational Databases, Big Data, and Other Options
5. The SiLK Suite
6. An Introduction to R for Security Analysts
7. Classification and Event Tools: IDS, AV, and SEM
8. Reference and Lookup: Tools for Figuring Out Who Someone Is
MAC and Hardware Addresses
9. More Tools
10. Exploratory Data Analysis and Visualization
11. On Fumbling
12. Volume and Time Analysis
13. Graph Analysis
14. Application Identification
15. Network Mapping
ISBN: 9781449357900
Publisher: O’Reilly Media
Year of Publication: 2014
Book Link: Home Page Url
