Free Shipping on Order Over $60
AfterPay Available
Windows Security Monitoring

Windows Security Monitoring

Scenarios and Patterns

by Andrei Miroshnikov
Paperback
Publication Date: 17/04/2018
23%
OFF
RRP  $82.95 $64.35
This item qualifies for FREE delivery

Dig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security

Written by a former Microsoft security program manager, DEFCON "Forensics CTF" village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating system′s event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenario-based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities.

This book is based on the author′s experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity.

Learn to:

  • Implement the Security Logging and Monitoring policy
  • Dig into the Windows security auditing subsystem
  • Understand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system
About the Author

Andrei Miroshnikov is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference "Forensics CTF" village and has been a speaker at Microsoft′s Bluehat security conference. In addition, Andrei is an author of the "Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference" and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)2 CISSP and Microsoft MCSE: Security certifications.

ISBN:
9781119390640
9781119390640
Category:
Computer networking & communications
Format:
Paperback
Publication Date:
17-04-2018
Language:
English
Publisher:
John\Wiley#& Sons, Incorporated
Country of origin:
United States
Dimensions (mm):
235x190x35mm
Weight:
0.84kg

This title is in stock with our Australian supplier and arrives at our Sydney warehouse within 7-10 working days of you placing an order.

Once received into our warehouse we will despatch it to you with a Shipping Notification which includes online tracking.

Please check the estimated delivery times below for your region, for after your order is despatched from our warehouse:

ACT Metro 2 working days

NSW Metro 2 working days 

NSW Rural 2-3 working days

NSW Remote 2-5 working days

NT Metro 3-6 working days

NT Remote 4-10 working days

QLD Metro 2-4 working days

QLD Rural 2-5 working days

QLD Remote 2-7 working days

SA Metro 2-5 working days

SA Rural 3-6 working days

SA Remote 3-7 working days

TAS Metro 3-6 working days

TAS Rural 3-6 working days

VIC Metro 2-3 working days

VIC Rural 2-4 working days

VIC Remote 2-5 working days

WA Metro 3-6 working days

WA Rural 4-8 working days

WA Remote 4-12 working days

Customer Reviews

Be the first to review Windows Security Monitoring.