Open Source Security Tools: Practical Guide to Security Applications by Tony Howlett
This book sorts through the overwhelming mass of open source security tools, chooses a few of the best, and shows network and system administrators how to use them to solve common security problem. Open Source Security Tools is a practicum. It tells readers what they need to do to secure their networks, introduces best-in-class tools, and shows readers how to use them. For each security task described, Howlett reviews the best open source tools, shows readers how to use them, and takes them through a sample implementation and case studies. At the end of each chapter, Howlett will offer pointers to other good open source tools that are worth investigating. The companion CD includes fully dowloadable versions of the tools, so readers can work along with the text. Newcomers to security will leave with enough knowledge and experience to deploy solutions and further their IT careers. Readers will learn to: * Secure their perimeter with open source scanners like Nessus.* Receive early warning about attempted breakins from IDS systems like Snort.* Install a firewall to keep hackers at bay (Turtle).* Use encyrption to secure email and other sensitive data (PGP)* If the worst happens, run forensics tools to investigate a breakin after the fact, like Autopsy or SleuthKit.This book is part of the Bruce Perens Open Source Series.
Excerpts from the book description :
Few frontline system administrators can afford to spend all day worrying about security. But in this age of widespread virus infections, worms, and digital attacks, no one can afford to neglect network defenses.
Written with the harried IT manager in mind, Open Source Security Tools is a practical, hands-on introduction to open source security tools. Author Tony Howlett has reviewed assortment of these free and low-cost solutions to provide reader with the “best of breed” for all major areas of information security.
Inside, reader will find everything from how to harden Linux and Windows systems to how to investigate breaches with Sleuth Kit, Autopsy Forensic Browser, and Forensic Tool Kit. For each security task described, the author reviews the best open source tools and how to use them and also provides a case study and sample implementation. Covered tasks include:
* Installing an open source firewall using Ipchains, Iptables, Turtle firewall, or Smoothwall
* Scanning ports and testing for vulnerabilities using Nmap, Nlog, Nmap for Windows, Nessus,and NessusWX
* Using sniffers and network-intrusion systems, including Tcpdump, Ethereal, Windump, Snort™, and Snort™ for Windows
* Tracking and analyzing collected data with Swatch, ACID, and NCC
* Encrypting communications with PGP, GnuPG, SSH, and Free S/WAN