CyberSecurity Summary episodes:

• March 01, 2025Serverless Security: Understand, Assess, and Implement Secure and Reliable Applications in AWS, Microsoft Azure, and Google Cloud

  This Book is a comprehensive guide to serverless security, focusing on the implementation of secure practices across AWS, Azure, and Google Cloud platforms. It covers various aspects, including securing application code, restricting permissions, managing accounts and secrets, implementing authentication and authorization, protecting sensitive data, and establishing robust monitoring, auditing, and alerting systems. The text provides practical examples and exercises to illustrate key concepts, along with a detailed explanation of the underlying security principles involved. Furthermore, it addresses the balancing of security with other development requirements and the importance of CI/CD pipelines and source control. Finally, it guides the reader through finalizing a risk assessment by considering business impact and prioritizing mitigation strategies.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Serverless-Security-Understand-Implement-Applications/dp/1484260996?&linkCode=ll1&tag=cvthunderx-20&linkId=2b667c7b976771478cbafb9d999c8903&language=en_US&ref_=as_li_ss_tl

  ...more

  

  ---

• March 01, 2025Serious Cryptography, 2nd Edition: A Practical Introduction to Modern Encryption

  This Book is a detailed guide to modern cryptography, covering both theoretical concepts and practical implementations. The book explores various cryptographic primitives, including stream ciphers, hash functions, and authenticated encryption, analyzing their strengths and weaknesses. It also discusses key management, including key generation and protection methods, and examines different types of attacks, such as side-channel attacks and chosen-plaintext/ciphertext attacks. Finally, it explains post-quantum cryptography, exploring algorithms designed to withstand attacks from quantum computers.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Serious-Cryptography-2nd-Introduction-Encryption/dp/1718503849?&linkCode=ll1&tag=cvthunderx-20&linkId=c9b9f60268810f0476688bdebd27f652&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• February 28, 2025Security in Computing

  This excerpt from Charles P. Pfleeger's "Security in Computing" (5th edition) is a textbook chapter on computer security. It examines various threats to computer systems, including malicious attacks (like denial-of-service and malware), and unintentional errors. The text also explores security measures, such as authentication methods, encryption techniques, access control, and risk analysis. Furthermore, it discusses legal and ethical considerations surrounding computer security and privacy, encompassing topics like data protection, intellectual property, and responsible use of technology. Finally, the chapter explores incident response and business continuity planning.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Computing-5th-Charles-Pfleeger/dp/0134085043?&linkCode=ll1&tag=cvthunderx-20&linkId=d07cac0f5d76c0aae1b8dc9e972c51f5&language=en_US&ref_=as_li_ss_tl
  
  

  ...more

  

  ---

• February 28, 2025Security Warrior: Know Your Enemy

  Security Warrior is a technical manual focusing on network security, reverse engineering, and attack techniques. It covers various operating systems (Windows, Linux) and their vulnerabilities, exploring topics like buffer overflows, social engineering, and TCP/IP analysis. The book also details methods for concealing attack traces and employing anti-forensics techniques. It provides practical examples and tools for both offensive and defensive security professionals, along with numerous references to other resources. Finally, it includes an appendix detailing SoftICE commands for advanced debugging and troubleshooting.
  
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Warrior-Know-Your-Enemy/dp/0596005458?&linkCode=ll1&tag=cvthunderx-20&linkId=693f18200ee2d91d8ff773dd466abfc3&language=en_US&ref_=as_li_ss_tl
  

  ...more

  

  ---

• February 27, 2025Security Testing with Kali NetHunter

  This Book is an excerpt from a Book about security testing with Kali NetHunter, a mobile penetration testing platform for Android. The excerpt covers installing and setting up a testing lab using virtual machines, exploring NetHunter's desktop apps and menu items, and performing various security tests such as HID attacks, Man-in-the-Middle attacks, and Wi-Fi network attacks using tools like cSploit, Shodan, DriveDroid, and the Mana Wireless Toolkit. The author emphasizes the importance of ethical hacking and legal considerations before attempting any security testing. Finally, troubleshooting and additional resources are also provided.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Testing-NetHunter-Daniel-Dieterle/dp/1539820998?&linkCode=ll1&tag=cvthunderx-20&linkId=8480ebb934d28a20213068a4b6d077ec&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• February 27, 2025Security Engineering: A Guide to Building Dependable Distributed Systems

  Ross Anderson's "Security Engineering: A Guide to Building Dependable Distributed Systems" explores various facets of security, from cryptographic vulnerabilities and attacks to access control mechanisms and the challenges of building secure systems. The text examines real-world examples of security failures in diverse areas including healthcare, banking, and transportation, highlighting the importance of robust security design and implementation, and the limitations of purely technical solutions. It also discusses the economic and policy aspects of security, emphasizing the need for a multi-faceted approach that incorporates user behavior and regulatory compliance. Finally, it touches upon the implications of emerging technologies like machine learning and the increasing reliance on software in critical systems.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Engineering-Building-Dependable-Distributed/dp/1119642787?&linkCode=ll1&tag=cvthunderx-20&linkId=511da009b1b68059ff086189d89b7539&language=en_US&ref_=as_li_ss_tl
  

  ...more

  

  ---

• February 26, 2025Security for Containers and Kubernetes: Learn how to implement robust security measures in containerized environments

  Luigi Aversa's Security for Containers and Kubernetes is a comprehensive guide to securing containerized environments. The book covers container stack security, image and registry security, and Kubernetes hardening. Specific topics explored include reducing attack surfaces, managing vulnerabilities, implementing role-based access control, and using various security tools. The text also details secure network communication and monitoring techniques. Finally, it addresses security concerns in popular cloud-based container services.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Containers-Kubernetes-containerized-environments/dp/9355518439?&linkCode=ll1&tag=cvthunderx-20&linkId=369b9ec78b4ecf92c559e7fca8d1885f&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• February 26, 2025Security Strategies in Linux Platforms and Applications

  This Book excerpt details Linux security strategies, covering threats, vulnerabilities, and hardening techniques. It explains Linux's architecture, including the kernel and its role in security. The text discusses access controls, file system security, and network security measures like firewalls and encryption. Furthermore, it addresses user and group management, secure remote access, and maintaining a secure system baseline. Finally, it provides information on update management and tools for detecting security breaches.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Strategies-Linux-Platforms-Applications/dp/1284255859?&linkCode=ll1&tag=cvthunderx-20&linkId=f6a57ef9c63db046373761c87d393de5&language=en_US&ref_=as_li_ss_tl

  ...more

  

  ---

• February 25, 2025Security Intelligence: A Practitioner's Guide to Solving Enterprise Security Challenges

  This Book is a technical Book excerpt focusing on network security, specifically detailing secure proxies and their role in modern threat detection and mitigation. It explores various security technologies, including firewalls, intrusion detection systems, and malware detection techniques, highlighting their limitations and how secure proxies overcome them. The text describes proxy architecture, policy engines, and deployment strategies, emphasizing the importance of application classification and real-time policy enforcement. Furthermore, it covers retrospective analysis methods for investigating past attacks and discusses the challenges of securing mobile devices and the Internet of Things. Finally, it introduces machine learning algorithms for application classification and data analysis within the context of network security.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Intelligence-Practitioners-Enterprise-Challenges/dp/1118896696?&linkCode=ll1&tag=cvthunderx-20&linkId=8081cab8b2ec7292de260eeb3d087950&language=en_US&ref_=as_li_ss_tl
  
  

  ...more

  

  ---

• February 25, 2025Security Automation with Ansible 2

  This Book is a table of contents and excerpts from Security Automation with Ansible 2, a book detailing how to automate security tasks using Ansible. The book covers Ansible fundamentals, integrating Ansible with tools like Ansible Tower and Jenkins, and automating security tasks such as web application security testing with OWASP ZAP, vulnerability scanning with Nessus, and implementing security hardening based on various benchmarks and frameworks. It also explores automating log monitoring and serverless defense using the Elastic Stack and AWS, creating custom Ansible modules, and setting up automated malware analysis systems like Cuckoo Sandbox and MISP. Finally, the text includes instructions for automating continuous security scanning for Docker containers and best practices for Ansible security.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Security-Automation-Ansible-Leverage-application/dp/1788394518?&linkCode=ll1&tag=cvthunderx-20&linkId=23d4bc26c5760d6d0d36f0dac6721c00&language=en_US&ref_=as_li_ss_tl
  

  ...more

  

  ---