Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Defensive Security with Kali Purple
  • Table Of Contents Toc
Defensive Security with Kali Purple

Defensive Security with Kali Purple

By : Karl Lane
4.8 (6)
Buy this Book
close
close
Defensive Security with Kali Purple

Defensive Security with Kali Purple

4.8 (6)
By: Karl Lane
Buy this Book

Overview of this book

Defensive Security with Kali Purple combines red team tools from the Kali Linux OS and blue team tools commonly found within a security operations center (SOC) for an all-in-one approach to cybersecurity. This book takes you from an overview of today's cybersecurity services and their evolution to building a solid understanding of how Kali Purple can enhance training and support proof-of-concept scenarios for your technicians and analysts. After getting to grips with the basics, you’ll learn how to develop a cyber defense system for Small Office Home Office (SOHO ) services. This is demonstrated through the installation and configuration of supporting tools such as virtual machines, the Java SDK, Elastic, and related software. You’ll then explore Kali Purple’s compatibility with the Malcolm suite of tools, including Arkime, CyberChef, Suricata, and Zeek. As you progress, the book introduces advanced features, such as security incident response with StrangeBee’s Cortex and TheHive and threat and intelligence feeds. Finally, you’ll delve into digital forensics and explore tools for social engineering and exploit development. By the end of this book, you’ll have a clear and practical understanding of how this powerful suite of tools can be implemented in real-world scenarios.
Table of Contents (18 chapters)
close
close
close
Preface
chevron up
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Conventions used
Icon
Get in touch
Icon
Share Your Thoughts
Icon
Download a free PDF copy of this book
Lock Free Chapter
1
Part 1:Introduction, History, and Installation
Icon
Part 1:Introduction, History, and Installation
2
Chapter 1: An Introduction to Cybersecurity
Icon
Chapter 1: An Introduction to Cybersecurity
Icon
How we got here
Icon
Offensive security
Icon
Defensive security
Icon
Summary
Icon
Questions
Icon
Further reading
3
Chapter 2: Kali Linux and the ELK Stack
Icon
Chapter 2: Kali Linux and the ELK Stack
Icon
The evolution of Kali Linux
Icon
Elasticsearch, Logstash, and Kibana (ELK stack)
Icon
Agents and monitoring
Icon
Summary
Icon
Questions
Icon
Further reading
4
Chapter 3: Installing the Kali Purple Linux Environment
Icon
Chapter 3: Installing the Kali Purple Linux Environment
Icon
Technical requirements
Icon
Acquiring the Kali Purple distribution
Icon
The installation of a VM
Icon
The installation of Kali Purple
Icon
The installation of the Java SDK
Icon
Summary
Icon
Questions
Icon
Further reading
5
Chapter 4: Configuring the ELK Stack
Icon
Chapter 4: Configuring the ELK Stack
Icon
Technical requirements
Icon
Elasticsearch
Icon
Kibana
Icon
Logstash
Icon
Summary
Icon
Questions
Icon
Further reading
6
Chapter 5: Sending Data to the ELK Stack
Icon
Chapter 5: Sending Data to the ELK Stack
Icon
Technical requirements
Icon
Understanding the data flow
Icon
Filebeat
Icon
Types of Beats
Icon
Elastic Agent
Icon
Logstash and filters
Icon
Summary
Icon
Questions
Icon
Further reading
7
Part 2: Data Analysis, Triage, and Incident Response
Icon
Part 2: Data Analysis, Triage, and Incident Response
8
Chapter 6: Traffic and Log Analysis
Icon
Chapter 6: Traffic and Log Analysis
Icon
Technical requirements
Icon
Understanding packets
Icon
Malcolm
Icon
Arkime
Icon
CyberChef and obfuscation
Icon
Summary
Icon
Questions
Icon
Further reading
9
Chapter 7: Intrusion Detection and Prevention Systems
Icon
Chapter 7: Intrusion Detection and Prevention Systems
Icon
Technical requirements
Icon
IDS
Icon
IPS
Icon
Suricata
Icon
Zeek
Icon
Summary
Icon
Questions
Icon
Further reading
10
Chapter 8: Security Incident and Response
Icon
Chapter 8: Security Incident and Response
Icon
Technical requirements
Icon
Incident response
Icon
Docker
Icon
Cortex
Icon
TheHive
Icon
Challenge!
Icon
Summary
Icon
Questions
Icon
Further reading
11
Part 3: Digital Forensics, Offensive Security, and NIST CSF
Icon
Part 3: Digital Forensics, Offensive Security, and NIST CSF
12
Chapter 9: Digital Forensics
Icon
Chapter 9: Digital Forensics
Icon
Technical requirements
Icon
Digital forensics and malware analysis
Icon
SET
Icon
BeEF
Icon
Maltego
Icon
Summary
Icon
Further reading
13
Chapter 10: Integrating the Red Team and External Tools
Icon
Chapter 10: Integrating the Red Team and External Tools
Icon
Technical requirements
Icon
OWASP ZAP
Icon
Wireshark
Icon
Metasploit
Icon
Scanners
Icon
Password cracking
Icon
Burp Suite integration
Icon
Summary
Icon
Questions
Icon
Further reading
14
Chapter 11: Autopilot, Python, and NIST Control
Icon
Chapter 11: Autopilot, Python, and NIST Control
Icon
Technical requirements
Icon
Autopilot
Icon
Python
Icon
NIST Control
Icon
Summary
Icon
Questions
Icon
Further reading
15
Index
Icon
Index
Icon
Why subscribe?
16
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Packt is searching for authors like you
Icon
Share Your Thoughts
Icon
Download a free PDF copy of this book
1
Appendix: Answer Key
Icon
Chapter 1
Icon
Chapter 2
Icon
Chapter 3
Icon
Chapter 4
Icon
Chapter 5
Icon
Chapter 6
Icon
Chapter 7
Icon
Chapter 8
Icon
Chapter 9
Icon
Chapter 10
Icon
Chapter 11

Preface

Why, hello there! Welcome to Defensive Security with Kali Purple – a fun-filled educational manual highlighting a unique flavor of the Kali Linux operating system that integrates defensive security tools and applications with the offensive security tools commonly utilized by penetration testers/ethical hackers.

Kali Purple is unique in that it is a suite of interoperable tools that can be used by either offensive or defensive cybersecurity personnel to develop proof-of-concept use cases for educational and training purposes. These tools are organized according to the pillars of the National Institute of Standards and Technology Cybersecurity Framework (NIST CSF).

While we’re providing an introductory manual with high-level overviews, we’ve also included some more advanced concepts and a plethora of bonus resources for those who love to fall down rabbit holes, are frequently unable to determine whether it’s presently dawn or dusk, and have a genuine appreciation for bad dad jokes.

For those who prefer to stay married, we’ve broken the content up into three progressive stages, each with its own group of chapters, so you can digest the material one bit at a time:

  • Installation of Kali Purple and tools used to acquire, store, and present information
  • Analysis of acquired data for triage and incident response
  • Digital forensics, offensive security, and automation

We’ve provided a very brief history of cybersecurity concepts in parallel with cyberattacks, before helping you begin to stand up your own instance of Kali Purple and deploy a Security Information and Event Management (SIEM) system.

We then introduce you to packet and data analysis tools along with intrusion detection and prevention systems. After that, we will progress into what happens after the data is collected, enriched, indexed, stored, and analyzed should it reveal malicious activity – incident response.

We then progress into digital forensics, social engineering, and offensive security, highlighting some of the more popular and well-known tools used by ethical hackers and cybercriminals alike, before wrapping it all up with automation and the NIST framework.

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Defensive Security with Kali Purple
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon