Book Image

Network Security Strategies

By : Aditya Mukherjee
Book Image

Network Security Strategies

By: Aditya Mukherjee

Overview of this book

With advanced cyber attacks severely impacting industry giants and the constantly evolving threat landscape, organizations are adopting complex systems to maintain robust and secure environments. Network Security Strategies will help you get well-versed with the tools and techniques required to protect any network environment against modern cyber threats. You’ll understand how to identify security vulnerabilities across the network and how to effectively use a variety of network security techniques and platforms. Next, the book will show you how to design a robust network that provides top-notch security to protect against traditional and new evolving attacks. With the help of detailed solutions and explanations, you'll be able to monitor networks skillfully and identify potential risks. Finally, the book will cover topics relating to thought leadership and the management aspects of network security. By the end of this network security book, you'll be well-versed in defending your network from threats and be able to consistently maintain operational efficiency, security, and privacy in your environment.
Table of Contents (15 chapters)
1
Section 1: Network Security Concepts, Threats, and Vulnerabilities
5
Section 2: Network Security Testing and Auditing
10
Section 3: Threat Management and Proactive Security Operations

Engagement models and methodologies

Different methodologies may be used while pen testing a network and web application. Some of them are listed as follows.

Black box

In black-box testing, the pen tester is given the role of a hacker. We are not provided with any details of the internal network, any inside IP scheming details, nor any diagrams or maps of the network. We have limited knowledge and are told that we have to pen test a specific network whose IP address is known. The pen tester then makes their way in by using different tools. First of all, the pen tester gathers information, finds any vulnerabilities, and then prepares a penetration test report.

Gray box

Gray-box testing is the technique in which the pen tester has some access to the internal network. We may be given a map of the system and any documentation of the services running. The purpose of gray-box testing is to save the time of the pen tester and make a more effective penetration test exercise than black-box testing...