{"product_id":"windows-security-monitoring-scenarios-and-patterns-paperback-1","title":"Windows Security Monitoring: Scenarios and Patterns - Paperback","description":"\u003cdiv\u003e\u003cp style=\"text-align: right;\"\u003e\u003ca href=\"https:\/\/reportcopyrightinfringement.com\/\" target=\"_blank\" rel=\"nofollow\"\u003e\u003cb\u003eReport copyright infringement\u003c\/b\u003e\u003c\/a\u003e\u003c\/p\u003e\u003c\/div\u003e\u003cp\u003eby \u003cb\u003eAndrei Miroshnikov\u003c\/b\u003e (Author)\u003c\/p\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cb\u003eDig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWritten by a former Microsoft security program manager, DEFCON \"Forensics CTF\" village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating system′s event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenario-based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities.\u003c\/p\u003e \u003cp\u003eThis book is based on the author′s experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity.\u003c\/p\u003e \u003cp\u003e\u003cb\u003eLearn to: \u003c\/b\u003e\u003c\/p\u003e \u003cul\u003e \u003cli\u003eImplement the Security Logging and Monitoring policy\u003c\/li\u003e \u003cli\u003eDig into the Windows security auditing subsystem\u003c\/li\u003e \u003cli\u003eUnderstand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system\u003c\/li\u003e \u003c\/ul\u003e About the Author \u003cp\u003e\u003cb\u003eAndrei Miroshnikov\u003c\/b\u003e is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference \"Forensics CTF\" village and has been a speaker at Microsoft′s Bluehat security conference. In addition, Andrei is an author of the \"Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference\" and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)\u003csup\u003e2\u003c\/sup\u003e CISSP and Microsoft MCSE: Security certifications.\u003c\/p\u003e\u003ch3\u003eBack Jacket\u003c\/h3\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cb\u003eDig deep into the Windows auditing subsystem to monitor for malicious activities and enhance Windows system security\u003c\/b\u003e \u003c\/p\u003e\u003cp\u003eWritten by a former Microsoft security program manager, DEFCON \"Forensics CTF\" village author and organizer, and CISSP, this book digs deep into the Windows security auditing subsystem to help you understand the operating system's event logging patterns for operations and changes performed within the system. Expert guidance brings you up to speed on Windows auditing, logging, and event systems to help you exploit the full capabilities of these powerful components. Scenario-based instruction provides clear illustration of how these events unfold in the real world. From security monitoring and event patterns to deep technical details about the Windows auditing subsystem and components, this book provides detailed information on security events generated by the operating system for many common operations such as user account authentication, Active Directory object modifications, local security policy changes, and other activities. \u003c\/p\u003e\u003cp\u003eThis book is based on the author's experience and the results of his research into Microsoft Windows security monitoring and anomaly detection. It presents the most common scenarios people should be aware of to check for any potentially suspicious activity. \u003c\/p\u003e\u003cp\u003e\u003cb\u003eLearn to: \u003c\/b\u003e \u003c\/p\u003e\u003cul\u003e \u003cli\u003eImplement the Security Logging and Monitoring policy\u003c\/li\u003e \u003cli\u003eDig into the Windows security auditing subsystem\u003c\/li\u003e \u003cli\u003eUnderstand the most common monitoring event patterns related to operations and changes in the Microsoft Windows operating system\u003c\/li\u003e \u003c\/ul\u003e\u003ch3\u003eAuthor Biography\u003c\/h3\u003e\u003cp\u003e\u003c\/p\u003e\u003cp\u003e\u003cb\u003eAndrei Miroshnikov\u003c\/b\u003e is a former security program manager with Microsoft. He is an organizer and author for the DEFCON security conference \"Forensics CTF\" village and has been a speaker at Microsoft's Bluehat security conference. In addition, Andrei is an author of the \"Windows 10 and Windows Server 2016 Security Auditing and Monitoring Reference\" and multiple internal Microsoft security training documents. Among his many professional qualifications, he has earned the (ISC)\u003csup\u003e2\u003c\/sup\u003e CISSP and Microsoft MCSE: Security certifications.\u003c\/p\u003e\n            \u003cdiv\u003e\n\u003cstrong\u003eNumber of Pages:\u003c\/strong\u003e 656\u003c\/div\u003e\n            \u003cdiv\u003e\n\u003cstrong\u003eDimensions:\u003c\/strong\u003e 1.7 x 9.1 x 7.3 IN\u003c\/div\u003e\n            \u003cdiv\u003e\n\u003cstrong\u003ePublication Date:\u003c\/strong\u003e April 17, 2018\u003c\/div\u003e\n            ","brand":"BooksCloud","offers":[{"title":"Default Title","offer_id":52491826331955,"sku":"9781119390640","price":57.0,"currency_code":"USD","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0300\/5595\/6612\/files\/b0Y3dUdDWXhQcHZzYm41MmpEa3JJQT09_10a9233c-1342-4963-ae48-0b3088dba8c6.webp?v=1759924736","url":"https:\/\/www.vysn.com\/en-ca\/products\/windows-security-monitoring-scenarios-and-patterns-paperback-1","provider":"VYSN","version":"1.0","type":"link"}