Mastering Windows Security and Hardening

Mastering Windows Security and Hardening

Author: Mark Dunkerley

Publisher: Packt Publishing Ltd

Published: 2020-07-08

Total Pages: 573

ISBN-13: 1839214287

DOWNLOAD EBOOK

Enhance Windows security and protect your systems and servers from various cyber attacks Key Features Book DescriptionAre you looking for effective ways to protect Windows-based systems from being compromised by unauthorized users? Mastering Windows Security and Hardening is a detailed guide that helps you gain expertise when implementing efficient security measures and creating robust defense solutions. We will begin with an introduction to Windows security fundamentals, baselining, and the importance of building a baseline for an organization. As you advance, you will learn how to effectively secure and harden your Windows-based system, protect identities, and even manage access. In the concluding chapters, the book will take you through testing, monitoring, and security operations. In addition to this, you’ll be equipped with the tools you need to ensure compliance and continuous monitoring through security operations. By the end of this book, you’ll have developed a full understanding of the processes and tools involved in securing and hardening your Windows environment.What you will learn Understand baselining and learn the best practices for building a baseline Get to grips with identity management and access management on Windows-based systems Delve into the device administration and remote management of Windows-based systems Explore security tips to harden your Windows server and keep clients secure Audit, assess, and test to ensure controls are successfully applied and enforced Monitor and report activities to stay on top of vulnerabilities Who this book is for This book is for system administrators, cybersecurity and technology professionals, solutions architects, or anyone interested in learning how to secure their Windows-based systems. A basic understanding of Windows security concepts, Intune, Configuration Manager, Windows PowerShell, and Microsoft Azure will help you get the best out of this book.


Mastering Windows Security and Hardening

Mastering Windows Security and Hardening

Author: Mark Dunkerley

Publisher: Packt Publishing Ltd

Published: 2022-08-19

Total Pages: 816

ISBN-13: 1803248742

DOWNLOAD EBOOK

A comprehensive guide to administering and protecting the latest Windows 11 and Windows Server 2022 from the complex cyber threats Key Features Learn to protect your Windows environment using zero-trust and a multi-layered security approach Implement security controls using Intune, Configuration Manager, Defender for Endpoint, and more Understand how to onboard modern cyber-threat defense solutions for Windows clients Book DescriptionAre you looking for the most current and effective ways to protect Windows-based systems from being compromised by intruders? This updated second edition is a detailed guide that helps you gain the expertise to implement efficient security measures and create robust defense solutions using modern technologies. The first part of the book covers security fundamentals with details around building and implementing baseline controls. As you advance, you’ll learn how to effectively secure and harden your Windows-based systems through hardware, virtualization, networking, and identity and access management (IAM). The second section will cover administering security controls for Windows clients and servers with remote policy management using Intune, Configuration Manager, Group Policy, Defender for Endpoint, and other Microsoft 365 and Azure cloud security technologies. In the last section, you’ll discover how to protect, detect, and respond with security monitoring, reporting, operations, testing, and auditing. By the end of this book, you’ll have developed an understanding of the processes and tools involved in enforcing security controls and implementing zero-trust security principles to protect Windows systems.What you will learn Build a multi-layered security approach using zero-trust concepts Explore best practices to implement security baselines successfully Get to grips with virtualization and networking to harden your devices Discover the importance of identity and access management Explore Windows device administration and remote management Become an expert in hardening your Windows infrastructure Audit, assess, and test to ensure controls are successfully applied and enforced Monitor and report activities to stay on top of vulnerabilities Who this book is for If you're a cybersecurity or technology professional, solutions architect, systems engineer, systems administrator, or anyone interested in learning how to secure the latest Windows-based systems, this book is for you. A basic understanding of Windows security concepts, Intune, Configuration Manager, Windows PowerShell, and Microsoft Azure will help you get the best out of this book.


Mastering Defensive Security

Mastering Defensive Security

Author: Cesar Bravo

Publisher: Packt Publishing Ltd

Published: 2022-01-06

Total Pages: 528

ISBN-13: 1800206097

DOWNLOAD EBOOK

An immersive learning experience enhanced with technical, hands-on labs to understand the concepts, methods, tools, platforms, and systems required to master the art of cybersecurity Key FeaturesGet hold of the best defensive security strategies and toolsDevelop a defensive security strategy at an enterprise levelGet hands-on with advanced cybersecurity threat detection, including XSS, SQL injections, brute forcing web applications, and moreBook Description Every organization has its own data and digital assets that need to be protected against an ever-growing threat landscape that compromises the availability, integrity, and confidentiality of crucial data. Therefore, it is important to train professionals in the latest defensive security skills and tools to secure them. Mastering Defensive Security provides you with in-depth knowledge of the latest cybersecurity threats along with the best tools and techniques needed to keep your infrastructure secure. The book begins by establishing a strong foundation of cybersecurity concepts and advances to explore the latest security technologies such as Wireshark, Damn Vulnerable Web App (DVWA), Burp Suite, OpenVAS, and Nmap, hardware threats such as a weaponized Raspberry Pi, and hardening techniques for Unix, Windows, web applications, and cloud infrastructures. As you make progress through the chapters, you'll get to grips with several advanced techniques such as malware analysis, security automation, computer forensics, and vulnerability assessment, which will help you to leverage pentesting for security. By the end of this book, you'll have become familiar with creating your own defensive security tools using IoT devices and developed advanced defensive security skills. What you will learnBecome well versed with concepts related to defensive securityDiscover strategies and tools to secure the most vulnerable factor – the userGet hands-on experience using and configuring the best security toolsUnderstand how to apply hardening techniques in Windows and Unix environmentsLeverage malware analysis and forensics to enhance your security strategySecure Internet of Things (IoT) implementationsEnhance the security of web applications and cloud deploymentsWho this book is for This book is for all IT professionals who want to take their first steps into the world of defensive security; from system admins and programmers to data analysts and data scientists with an interest in security. Experienced cybersecurity professionals working on broadening their knowledge and keeping up to date with the latest defensive developments will also find plenty of useful information in this book. You'll need a basic understanding of networking, IT, servers, virtualization, and cloud platforms before you get started with this book.


Mastering Linux Security and Hardening

Mastering Linux Security and Hardening

Author: Donald A. Tevault

Publisher: Packt Publishing Ltd

Published: 2020-02-21

Total Pages: 652

ISBN-13: 1838983597

DOWNLOAD EBOOK

A comprehensive guide to securing your Linux system against cyberattacks and intruders Key Features Deliver a system that reduces the risk of being hacked Explore a variety of advanced Linux security techniques with the help of hands-on labs Master the art of securing a Linux environment with this end-to-end practical guide Book DescriptionFrom creating networks and servers to automating the entire working environment, Linux has been extremely popular with system administrators for the last couple of decades. However, security has always been a major concern. With limited resources available in the Linux security domain, this book will be an invaluable guide in helping you get your Linux systems properly secured. Complete with in-depth explanations of essential concepts, practical examples, and self-assessment questions, this book begins by helping you set up a practice lab environment and takes you through the core functionalities of securing Linux. You'll practice various Linux hardening techniques and advance to setting up a locked-down Linux server. As you progress, you will also learn how to create user accounts with appropriate privilege levels, protect sensitive data by setting permissions and encryption, and configure a firewall. The book will help you set up mandatory access control, system auditing, security profiles, and kernel hardening, and finally cover best practices and troubleshooting techniques to secure your Linux environment efficiently. By the end of this Linux security book, you will be able to confidently set up a Linux server that will be much harder for malicious actors to compromise.What you will learn Create locked-down user accounts with strong passwords Configure firewalls with iptables, UFW, nftables, and firewalld Protect your data with different encryption technologies Harden the secure shell service to prevent security break-ins Use mandatory access control to protect against system exploits Harden kernel parameters and set up a kernel-level auditing system Apply OpenSCAP security profiles and set up intrusion detection Configure securely the GRUB 2 bootloader and BIOS/UEFI Who this book is for This book is for Linux administrators, system administrators, and network engineers interested in securing moderate to complex Linux environments. Security consultants looking to enhance their Linux security skills will also find this book useful. Working experience with the Linux command line and package management is necessary to understand the concepts covered in this book.


Mastering Windows Server 2019

Mastering Windows Server 2019

Author: Jordan Krause

Publisher: Packt Publishing Ltd

Published: 2019-03-18

Total Pages: 516

ISBN-13: 1789809584

DOWNLOAD EBOOK

New edition of the bestselling guide to Mastering Windows Server, updated to Windows Server 2022 with improved security, better platform flexibility, new windows admin center, upgraded Hyper-V manager and hybrid cloud support Key Features Develop necessary skills to design and implement Microsoft Server 2019 in enterprise environment Provide support to your medium to large enterprise and leverage your experience in administering Microsoft Server 2019 Effectively administering Windows server 2019 with the help of practical examples Book DescriptionMastering Windows Server 2019 – Second Edition covers all of the essential information needed to implement and utilize this latest-and-greatest platform as the core of your data center computing needs. You will begin by installing and managing Windows Server 2019, and by clearing up common points of confusion surrounding the versions and licensing of this new product. Centralized management, monitoring, and configuration of servers is key to an efficient IT department, and you will discover multiple methods for quickly managing all of your servers from a single pane of glass. To this end, you will spend time inside Server Manager, PowerShell, and even the new Windows Admin Center, formerly known as Project Honolulu. Even though this book is focused on Windows Server 2019 LTSC, we will still discuss containers and Nano Server, which are more commonly related to the SAC channel of the server platform, for a well-rounded exposition of all aspects of using Windows Server in your environment. We also discuss the various remote access technologies available in this operating system, as well as guidelines for virtualizing your data center with Hyper-V. By the end of this book, you will have all the ammunition required to start planning for, implementing, and managing Windows.What you will learn Work with the updated Windows Server 2019 interface, including Server Core and Windows Admin Center Secure your network and data with new technologies in Windows Server 2019 Learn about containers and understand the appropriate situations to use Nano Server Discover new ways to integrate your data center with Microsoft Azure Harden your Windows Servers to help keep the bad guys out Virtualize your data center with Hyper-V Who this book is for If you are a System Administrator or an IT professional interested in designing and deploying Windows Server 2019 then this book is for you. Previous experience of Windows Server operating systems and familiarity with networking concepts is required.


Mastering Active Directory

Mastering Active Directory

Author: Dishan Francis

Publisher: Packt Publishing Ltd

Published: 2021-11-30

Total Pages: 780

ISBN-13: 1801073759

DOWNLOAD EBOOK

Become an expert at managing enterprise identity infrastructure with Active Directory Domain Services 2022. Purchase of the print or Kindle book includes a free eBook in the PDF format. Key Features Design and update your identity infrastructure by utilizing the latest Active Directory features and core capabilities Overcome migration challenges as you update to Active Directory Domain Services 2022 Establish a strong identity foundation in the cloud by consolidating secure access Book Description Mastering Active Directory, Third Edition is a comprehensive guide for Information Technology professionals looking to improve their knowledge about MS Windows Active Directory Domain Service. The book will help you to use identity elements effectively and manage your organization's infrastructure in a secure and efficient way. This third edition has been fully updated to reflect the importance of cloud-based strong authentication and other tactics to protect identity infrastructure from emerging security threats. Mastering Active Directory, Third Edition provides extensive coverage of AD Domain Services and helps you explore their capabilities as you update to Windows Server 2022. This book will also teach you how to extend on-premises identity presence to cloud via Azure AD hybrid setup. By the end of this Microsoft Active Directory book, you'll feel confident in your ability to design, plan, deploy, protect, and troubleshoot your enterprise identity infrastructure. What you will learn Install, protect, and manage Active Directory Domain Services (Windows Server 2022) Design your hybrid identity by evaluating business and technology requirements Automate administrative tasks in Active Directory using Windows PowerShell 7.x Protect sensitive data in a hybrid environment using Azure Information Protection Learn about Flexible Single Master Operation (FSMO) roles and their placement Manage directory objects effectively using administrative tools and PowerShell Centrally maintain the state of user and computer configuration by using Group Policies Harden your Active Directory using security best practices Who this book is for If you are an Active Directory administrator, system administrator, or IT professional who has basic knowledge of Active Directory and is looking to become an expert in this topic, this book is for you. You need to have some experience of working with Active Directory to make the most of this book.


Mastering Linux Security and Hardening

Mastering Linux Security and Hardening

Author: Donald A. Tevault

Publisher: Packt Publishing Ltd

Published: 2018-01-11

Total Pages: 367

ISBN-13: 1788625064

DOWNLOAD EBOOK

A comprehensive guide to mastering the art of preventing your Linux system from getting compromised. Key Features Leverage this guide to confidently deliver a system that reduces the risk of being hacked Perform a number of advanced Linux security techniques such as network service detection, user authentication, controlling special permissions, encrypting file systems, and much more Master the art of securing a Linux environment with this end-to-end practical guide Book DescriptionThis book has extensive coverage of techniques that will help prevent attackers from breaching your system, by building a much more secure Linux environment. You will learn various security techniques such as SSH hardening, network service detection, setting up firewalls, encrypting file systems, protecting user accounts, authentication processes, and so on. Moving forward, you will also develop hands-on skills with advanced Linux permissions, access control, special modes, and more. Lastly, this book will also cover best practices and troubleshooting techniques to get your work done efficiently. By the end of this book, you will be confident in delivering a system that will be much harder to compromise.What you will learn Use various techniques to prevent intruders from accessing sensitive data Prevent intruders from planting malware, and detect whether malware has been planted Prevent insiders from accessing data that they aren’t authorized to access Do quick checks to see whether a computer is running network services that it doesn’t need to run Learn security techniques that are common to all Linux distros, and some that are distro-specific Who this book is for If you are a systems administrator or a network engineer interested in making your Linux environment more secure, then this book is for you. Security consultants wanting to enhance their Linux security skills will also benefit from this book. Prior knowledge of Linux is mandatory.


Mastering Windows Server 2016

Mastering Windows Server 2016

Author: Jordan Krause

Publisher: Packt Publishing Ltd

Published: 2016-10-25

Total Pages: 417

ISBN-13: 1785881450

DOWNLOAD EBOOK

A comprehensive and practical guide to Windows Server 2016 About This Book In-depth coverage of new features of Windows Server 2016 Gain the necessary skills and knowledge to design and implement Microsoft Server 2016 in enterprise environment Know how you can support your medium to large enterprise and leverage your experience in administering Microsoft Server 2016, A practical guide to administering Windows server 2016 Who This Book Is For The book is targeted at System Administrators and IT professionals who would like to design and deploy Windows Server 2016 (physical and logical) Enterprise infrastructure. Previous experience of Windows Server operating systems and familiarity with networking concepts is assumed. System administrators who are upgrading or migrating to Windows Server 2016 would also find this book useful. What You Will Learn Familiarize yourself with Windows Server 2016 ideology, the core of most datacenters running today New functions and benefits provided only by the new Windows Server 2016 Get comfortable working with Nanoserver Secure your network with new technologies in Server 2016 Harden your Windows Servers to help keep those bad guys out! Using new built-in integration for Docker with this latest release of Windows Server 2016 Virtualize your datacenter with Hyper-V In Detail Windows Server 2016 is the server operating system developed by Microsoft as part of the Windows NT family of operating systems, developed concurrently with Windows 10. With Windows Server 2016, Microsoft has gotten us thinking outside of the box for what it means to be a system administration, and comes with some interesting new capabilities. These are exciting times to be or to become a server administrator! This book covers all aspects of administration level tasks and activities required to gain expertise in Microsoft Windows Server 2016. You will begin by getting familiar and comfortable navigating around in the interface. Next, you will learn to install and manage Windows Server 2016 and discover some tips for adapting to the new server management ideology that is all about centralized monitoring and configuration. You will deep dive into core Microsoft infrastructure technologies that the majority of companies are going to run on Server 2016. Core technologies such as Active Directory, DNS, DHCP, Certificate Services, File Services, and more. We will talk about networking in this new operating system, giving you a networking toolset that is useful for everyday troubleshooting and maintenance. Also discussed is the idea of Software Defined Networking. You will later walk through different aspects of certificate administration in Windows Server 2016. Three important and crucial areas to cover in the Remote Access role -- DirectAccess, VPN, and the Web Application Proxy -- are also covered. You will then move into security functions and benefits that are available in Windows Server 2016. Also covered is the brand new and all-important Nano Server! We will incorporate PowerShell as a central platform for performing many of the functions that are discussed in this book, including a chapter dedicated to the new PowerShell 5.0. Additionally, you will learn about the new built-in integration for Docker with this latest release of Windows Server 2016. The book ends with a discussion and information on virtualizing your datacenter with Hyper-V. By the end of this book, you will have all the ammunition required to start planning for and implementing Windows Server 2016. Style and approach This book offers a practical and wide coverage of all features of brand new Microsoft Server 2016 along with tips on daily administration tasks.


Mastering FreeBSD and OpenBSD Security

Mastering FreeBSD and OpenBSD Security

Author: Yanek Korff

Publisher: "O'Reilly Media, Inc."

Published: 2005

Total Pages: 468

ISBN-13: 9780596006266

DOWNLOAD EBOOK

FreeBSD and OpenBSD are increasingly gaining traction in educational institutions, non-profits, and corporations worldwide because they provide significant security advantages over Linux. Although a lot can be said for the robustness, clean organization, and stability of the BSD operating systems, security is one of the main reasons system administrators use these two platforms.There are plenty of books to help you get a FreeBSD or OpenBSD system off the ground, and all of them touch on security to some extent, usually dedicating a chapter to the subject. But, as security is commonly named as the key concern for today's system administrators, a single chapter on the subject can't provide the depth of information you need to keep your systems secure.FreeBSD and OpenBSD are rife with security "building blocks" that you can put to use, and Mastering FreeBSD and OpenBSD Security shows you how. Both operating systems have kernel options and filesystem features that go well beyond traditional Unix permissions and controls. This power and flexibility is valuable, but the colossal range of possibilities need to be tackled one step at a time. This book walks you through the installation of a hardened operating system, the installation and configuration of critical services, and ongoing maintenance of your FreeBSD and OpenBSD systems.Using an application-specific approach that builds on your existing knowledge, the book provides sound technical information on FreeBSD and Open-BSD security with plenty of real-world examples to help you configure and deploy a secure system. By imparting a solid technical foundation as well as practical know-how, it enables administrators to push their server's security to the next level. Even administrators in other environments--like Linux and Solaris--can find useful paradigms to emulate.Written by security professionals with two decades of operating system experience, Mastering FreeBSD and OpenBSD Security features broad and deep explanations of how how to secure your most critical systems. Where other books on BSD systems help you achieve functionality, this book will help you more thoroughly secure your deployments.


Mastering AWS Security

Mastering AWS Security

Author: Albert Anthony

Publisher: Packt Publishing Ltd

Published: 2017-10-26

Total Pages: 247

ISBN-13: 1788290798

DOWNLOAD EBOOK

In depth informative guide to implement and use AWS security services effectively. About This Book Learn to secure your network, infrastructure, data and applications in AWS cloud Log, monitor and audit your AWS resources for continuous security and continuous compliance in AWS cloud Use AWS managed security services to automate security. Focus on increasing your business rather than being diverged onto security risks and issues with AWS security. Delve deep into various aspects such as the security model, compliance, access management and much more to build and maintain a secure environment. Who This Book Is For This book is for all IT professionals, system administrators and security analysts, solution architects and Chief Information Security Officers who are responsible for securing workloads in AWS for their organizations. It is helpful for all Solutions Architects who want to design and implement secure architecture on AWS by the following security by design principle. This book is helpful for personnel in Auditors and Project Management role to understand how they can audit AWS workloads and how they can manage security in AWS respectively. If you are learning AWS or championing AWS adoption in your organization, you should read this book to build security in all your workloads. You will benefit from knowing about security footprint of all major AWS services for multiple domains, use cases, and scenarios. What You Will Learn Learn about AWS Identity Management and Access control Gain knowledge to create and secure your private network in AWS Understand and secure your infrastructure in AWS Understand monitoring, logging and auditing in AWS Ensure Data Security in AWS Learn to secure your applications in AWS Explore AWS Security best practices In Detail Mastering AWS Security starts with a deep dive into the fundamentals of the shared security responsibility model. This book tells you how you can enable continuous security, continuous auditing, and continuous compliance by automating your security in AWS with the tools, services, and features it provides. Moving on, you will learn about access control in AWS for all resources. You will also learn about the security of your network, servers, data and applications in the AWS cloud using native AWS security services. By the end of this book, you will understand the complete AWS Security landscape, covering all aspects of end - to -end software and hardware security along with logging, auditing, and compliance of your entire IT environment in the AWS cloud. Lastly, the book will wrap up with AWS best practices for security. Style and approach The book will take a practical approach delving into different aspects of AWS security to help you become a master of it. It will focus on using native AWS security features and managed AWS services to help you achieve continuous security and continuous compliance.