Introduction to Kali Purple: Harness the synergy of offensive and defensive cybersecurity strategies of Kali Linux
Author: Karl Lane (Author)
Publisher finelybook 出版社: Packt Publishing
Publication Date 出版日期: 2024-06-28
Language 语言: English
Print Length 页数: 376 pages
ISBN-10: 1835088988
ISBN-13: 9781835088982
Book Description
Combine the offensive capabilities of Kali Linux with the defensive strength of a security operations center to enhance cybersecurity for business and training purposes
Key Features:
– Gain practical experience in defensive security methods
– Learn the correct process for acquiring, installing, and configuring a robust SOC from home
– Create training scenarios for junior technicians and analysts using real-world cybersecurity utilities
– Purchase of the print or Kindle book includes a free PDF eBook
Book Description
:
Introduction to Kali Purple combines red team tools from the Kali Linux OS and blue team tools commonly found within a security operations center (SOC) for an all-in-one approach to cybersecurity. This book takes you from an overview of today’s cybersecurity services and their evolution to building a solid understanding of how Kali Purple can enhance training and support proof-of-concept scenarios for your technicians and analysts.
After getting to grips with the basics, you’ll learn how to develop a cyber defense system for Small Office Home Office (SOHO ) services. This is demonstrated through the installation and configuration of supporting tools such as virtual machines, the Java SDK, Elastic, and related software. You’ll then explore Kali Purple’s compatibility with the Malcolm suite of tools, including Arkime, CyberChef, Suricata, and Zeek. As you progress, the book introduces advanced features, such as security incident response with StrangeBee’s Cortex and TheHive and threat and intelligence feeds. Finally, you’ll delve into digital forensics and explore tools for social engineering and exploit development.
By the end of this book, you’ll have a clear and practical understanding of how this powerful suite of tools can be implemented in real-world scenarios.
What You Will Learn:
– Set up and configure a fully functional miniature security operations center
– Explore and implement the government-created Malcolm suite of tools
– Understand traffic and log analysis using Arkime and CyberChef
– Compare and contrast intrusion detection and prevention systems
– Explore incident response methods through Cortex, TheHive, and threat intelligence feed integration
– Leverage purple team techniques for social engineering and exploit development
Who this book is for:
This book is for entry-level cybersecurity professionals eager to explore a functional defensive environment. Cybersecurity analysts, SOC analysts, and junior penetration testers seeking to better understand their targets will find this content particularly useful. If you’re looking for a proper training mechanism for proof-of-concept scenarios, this book has you covered. While not a prerequisite, a solid foundation of offensive and defensive cybersecurity terms, along with basic experience using any Linux operating system, will make following along easier.
Table of Contents
– An Introduction to Cybersecurity
– Kali Linux and the Elk Stack
– Installing the Kali Purple Linux Environment
– Configuring the ELK Stack
– Sending Data to the ELK Stack
– Traffic and Log Analysis
– Intrusion Detection and Prevention Systems
– Security Incident and Response
– Digital Forensics
– Integrating the Red Team and External Tools
– Autopilot, Python, and NIST Control
About the Author
Karl Lane embarked on his tech journey while stationed at NATO HQ in Brussels, Belgium. A colleague appreciated his writing style and asked for his assistance in creating a text-based game. To accomplish this, he needed to learn Linux and C coding. Following his military service, Karl formally enrolled in college as an IT major and secured a Technical Aide position at the world headquarters of the multinational 3M Company in St. Paul, Minnesota. It was there that he gained experience in software testing. What could be more enjoyable than creating games? Breaking them! Thus began a lengthy career that eventually led him into the field of defensive cybersecurity. Karl and his wife, Britni, have an ever-changing number of children as they are licensed foster parents. When not dedicating time to his family, he can usually be found playing his bass guitar.
相关文件下载地址
相关推荐
- Hands-On Machine Learning with C++: Build, train, and deploy end-to-end machine learning and deep learning pipelines, 2nd Edition
- IDS and IPS with Snort 3: Get up and running with Snort 3 and discover effective solutions to your security issues
- Microsoft 365 Administration Cookbook: Enhance your Microsoft 365 productivity to manage and optimize its apps and services, 2nd Edition
- Zabbix 7 IT Infrastructure Monitoring Cookbook: Explore the new features of Zabbix 7 for designing, building, and maintaining your Zabbix setup, 3rd Edition
- Refactoring with C++: Explore modern ways of developing maintainable and efficient applications
- Microsoft 365 Copilot At Work: Using AI to Get the Most from Your Business Data and Favorite Apps