Security Monitoring with Wazuh
A hands-on guide to effective enterprise security using real-life use cases in Wazuh
Seiten
2024
Packt Publishing Limited (Verlag)
978-1-83763-215-2 (ISBN)
Packt Publishing Limited (Verlag)
978-1-83763-215-2 (ISBN)
Learn how to set up zero-cost security automation, incident response, file integrity monitoring systems, and cloud security monitoring from scratch
Key Features
Get a thorough overview of Wazuh’s features and learn how to make the most of them
Detect network and host-based intrusion, monitor for known vulnerabilities and exploits, and detect anomalous behavior
Build a monitoring system for security compliance that adheres to frameworks such as MITRE ATT&CK, PCI DSS, and GDPR
Purchase of the print or Kindle book includes a free PDF eBook
Book DescriptionExplore the holistic solution that Wazuh offers to improve your organization’s cybersecurity posture with this insightful guide. Security Monitoring with Wazuh is a comprehensive resource, covering use cases, tool integration, and compliance monitoring to equip you with the skills you need to build an enterprise-level defense system.
The book begins by setting up an Intrusion Detection System (IDS), integrating the open-source tool Suricata with the Wazuh platform, and then explores topics such as network and host-based intrusion detection, monitoring for known vulnerabilities, exploits, and detecting anomalous behavior. As you progress, you’ll learn how to leverage Wazuh’s capabilities to set up Security Orchestration, Automation, and Response (SOAR). The chapters will lead you through the process of implementing security monitoring practices aligned with industry standards and regulations. You’ll also master monitoring and enforcing compliance with frameworks such as PCI DSS, GDPR, and MITRE ATT&CK, ensuring that your organization maintains a strong security posture while adhering to legal and regulatory requirements.
By the end of this book, you’ll be proficient in harnessing the power of Wazuh and have a deeper understanding of effective security monitoring strategies.What you will learn
Find out how to set up an intrusion detection system with Wazuh
Get to grips with setting up a file integrity monitoring system
Deploy Malware Information Sharing Platform (MISP) for threat intelligence automation to detect indicators of compromise (IOCs)
Explore ways to integrate Shuffle, TheHive, and Cortex to set up security automation
Apply Wazuh and other open source tools to address your organization’s specific needs
Integrate Osquery with Wazuh to conduct threat hunting
Who this book is forThis book is for SOC analysts, security architects, and security engineers who want to set up open-source SOC with critical capabilities such as file integrity monitoring, security monitoring, threat intelligence automation, and cloud security monitoring. Managed service providers aiming to build a scalable security monitoring system for their clients will also find valuable insights in this book. Familiarity with basic IT, cybersecurity, cloud, and Linux concepts is necessary to get started.
Key Features
Get a thorough overview of Wazuh’s features and learn how to make the most of them
Detect network and host-based intrusion, monitor for known vulnerabilities and exploits, and detect anomalous behavior
Build a monitoring system for security compliance that adheres to frameworks such as MITRE ATT&CK, PCI DSS, and GDPR
Purchase of the print or Kindle book includes a free PDF eBook
Book DescriptionExplore the holistic solution that Wazuh offers to improve your organization’s cybersecurity posture with this insightful guide. Security Monitoring with Wazuh is a comprehensive resource, covering use cases, tool integration, and compliance monitoring to equip you with the skills you need to build an enterprise-level defense system.
The book begins by setting up an Intrusion Detection System (IDS), integrating the open-source tool Suricata with the Wazuh platform, and then explores topics such as network and host-based intrusion detection, monitoring for known vulnerabilities, exploits, and detecting anomalous behavior. As you progress, you’ll learn how to leverage Wazuh’s capabilities to set up Security Orchestration, Automation, and Response (SOAR). The chapters will lead you through the process of implementing security monitoring practices aligned with industry standards and regulations. You’ll also master monitoring and enforcing compliance with frameworks such as PCI DSS, GDPR, and MITRE ATT&CK, ensuring that your organization maintains a strong security posture while adhering to legal and regulatory requirements.
By the end of this book, you’ll be proficient in harnessing the power of Wazuh and have a deeper understanding of effective security monitoring strategies.What you will learn
Find out how to set up an intrusion detection system with Wazuh
Get to grips with setting up a file integrity monitoring system
Deploy Malware Information Sharing Platform (MISP) for threat intelligence automation to detect indicators of compromise (IOCs)
Explore ways to integrate Shuffle, TheHive, and Cortex to set up security automation
Apply Wazuh and other open source tools to address your organization’s specific needs
Integrate Osquery with Wazuh to conduct threat hunting
Who this book is forThis book is for SOC analysts, security architects, and security engineers who want to set up open-source SOC with critical capabilities such as file integrity monitoring, security monitoring, threat intelligence automation, and cloud security monitoring. Managed service providers aiming to build a scalable security monitoring system for their clients will also find valuable insights in this book. Familiarity with basic IT, cybersecurity, cloud, and Linux concepts is necessary to get started.
Rajneesh Gupta is a seasoned cybersecurity professional with over 11 years of industry experience. With a remarkable career focused on incident response, penetration testing, security compliance, and risk management, Rajneesh has established himself as a leading expert in the field. He is also an accomplished author, having penned the book "Hands-on with Blockchain and Cybersecurity." As a dedicated educator, Rajneesh has made a significant impact on the cybersecurity community by training over 60,000 students globally.
Table of Contents
Intrusion Detection System (IDS) Using Wazuh
Malware Detection Using Wazuh
Threat Intelligence and Analysis
Security Automation and Orchestration Using Shuffle
Incident Response with Wazuh
Threat Hunting with Wazuh
Vulnerability Detection and Configuration Assessment
Appendix
Glossary
| Erscheinungsdatum | 03.02.2024 |
|---|---|
| Vorwort | Santiago Bassett |
| Verlagsort | Birmingham |
| Sprache | englisch |
| Maße | 191 x 235 mm |
| Themenwelt | Informatik ► Netzwerke ► Sicherheit / Firewall |
| ISBN-10 | 1-83763-215-4 / 1837632154 |
| ISBN-13 | 978-1-83763-215-2 / 9781837632152 |
| Zustand | Neuware |
| Haben Sie eine Frage zum Produkt? |
Mehr entdecken
aus dem Bereich
aus dem Bereich
Das Lehrbuch für Konzepte, Prinzipien, Mechanismen, Architekturen und …
Buch | Softcover (2022)
Springer Vieweg (Verlag)
CHF 48,95
Management der Informationssicherheit und Vorbereitung auf die …
Buch (2024)
Carl Hanser (Verlag)
CHF 97,95
