Windows Security Monitoring: Scenarios and Patterns | Agenda Bookshop Skip to content
Selected Colleen Hoover Books at €9.99c | In-store & Online
Selected Colleen Hoover Books at €9.99c | In-store & Online
A01=Andrei Miroshnikov
Age Group_Uncategorized
Age Group_Uncategorized
Author_Andrei Miroshnikov
automatic-update
Category1=Non-Fiction
Category=UR
Category=UT
COP=United States
Delivery_Delivery within 10-20 working days
Language_English
PA=Available
Price_€20 to €50
PS=Active
softlaunch
14%
off
Windows Security Monitoring: Scenarios and Patterns - Agenda Bookshop

Windows Security Monitoring: Scenarios and Patterns

English

By (author): Andrei Miroshnikov

Dig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security

Written by a former Microsoft security program manager, DEFCON Forensics CTF village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating systems event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenariobased instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities.

This book is based on the authors experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity.

Learn to:

  • Implement the Security Logging and Monitoring policy
  • Dig into the Windows security auditing subsystem
  • Understand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system
About the Author

Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference Forensics CTF village and has been a speaker at Microsofts Bluehat security conference. In addition, Andrei is an author of the Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.

See more
€40.41
€46.99
Save 14%
A01=Andrei MiroshnikovAge Group_UncategorizedAuthor_Andrei Miroshnikovautomatic-updateCategory1=Non-FictionCategory=URCategory=UTCOP=United StatesDelivery_Delivery within 10-20 working daysLanguage_EnglishPA=AvailablePrice_€20 to €50PS=Activesoftlaunch
Delivery/Collection within 10-20 working days
Product Details
  • Weight: 839g
  • Dimensions: 185 x 234mm
  • Publication Date: 22 Jun 2018
  • Publisher: John Wiley & Sons Inc
  • Publication City/Country: United States
  • Language: English
  • ISBN13: 9781119390640

About Andrei Miroshnikov

Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference Forensics CTF village and has been a speaker at Microsoft's Bluehat security conference. In addition Andrei is an author of the Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference and multiple internal Microsoft security training documents. Among his many professional qualifications he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.

Customer Reviews

Be the first to write a review
0%
(0)
0%
(0)
0%
(0)
0%
(0)
0%
(0)
We use cookies to ensure that we give you the best experience on our website. If you continue we'll assume that you are understand this. Learn more
Accept