CyberSecurity Summary episodes:

• November 17, 2024Principles of Computer Security: CompTIA Security+ and Beyond, Sixth Edition

  The Book "Principles of Computer Security: CompTIA Security+ and Beyond" provides a comprehensive overview of computer security, encompassing a wide range of topics. It explains the principles of intrusion detection systems (IDSs), including how they work and how they are used to protect networks from malicious activity. It covers various cryptography concepts, including encryption algorithms, digital signatures, and public key infrastructure (PKI). It delves into the importance of organizational security and the role of policies, procedures, and training in securing systems and networks. It explores the threats posed by malware and social engineering attacks and discusses methods to mitigate these threats. Finally, it examines the challenges of securing cloud computing environments and mobile devices.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Principles-Computer-Security-CompTIA-SY0-601/dp/1260474313?&linkCode=ll1&tag=cvthunderx-20&linkId=eaa4d7f5aa8423536b8764683d4a7119&language=en_US&ref_=as_li_ss_tl
  
  

  ...more

  

  ---

• November 17, 2024Practical Go: Building Scalable Network and Non-Network Applications

  The Book provided is an excerpt from the table of contents and introductory materials of a book titled "Practical Go: Building Scalable Network and Non-Network Applications." The book aims to guide readers through building various categories of applications using the Go programming language. It covers building command-line applications, HTTP applications, and gRPC applications. The excerpt highlights the book's approach, focusing on practical application development rather than exhaustive language feature explanations. The text also provides instructions for setting up the Go development environment, choosing an editor, and installing necessary tools. It emphasizes the importance of testing and includes examples of writing unit tests for various code segments. Finally, the excerpt includes the author's acknowledgments and a Wiley End User License Agreement.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Practical-Go-Building-Non-Network-Applications/dp/1119773814?&linkCode=ll1&tag=cvthunderx-20&linkId=74c5b92d8dbbf04274946475c2743b50&language=en_US&ref_=as_li_ss_tl
  
  

  ...more

  

  ---

• November 17, 2024Practical Automation with PowerShell: Effective scripting from the console to the cloud

  The Book Practical Automation with PowerShell focuses on building automations in a secure and reliable manner. It explains concepts like using secure objects for sensitive data, creating data-driven functions to avoid repetition, and how to leverage different methods of remote execution for large-scale tasks. It emphasizes that even seemingly simple automations can benefit from thoughtful planning and careful execution to ensure that they are reliable, efficient, and secure. The book provides real-world examples and specific guidance for handling common challenges in automation, such as data validation, error handling, and logging.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Practical-Automation-PowerShell-Matthew-Dowst/dp/1617299553?&linkCode=ll1&tag=cvthunderx-20&linkId=3f28ff536b52f5333b502cdbf7a9978c&language=en_US&ref_=as_li_ss_tl
  
  

  ...more

  

  ---

• November 17, 2024Penetration Testing with Shellcode

  The Book titled "Penetration Testing with Shellcode" by Hamza Megahed. This book provides a comprehensive guide to detecting, exploiting, and securing network-level and operating system vulnerabilities. The book explores the concept of shellcode, a payload used to execute commands on a compromised system, and how it is utilized in buffer overflow attacks. It guides readers through the process of creating custom shellcode, overcoming challenges posed by bad characters, and understanding the techniques behind various shellcode types, including the execve syscall, bind TCP shell, and reverse TCP shell. The book further delves into buffer overflow attacks on both Linux and Windows systems, covering techniques like fuzzing, controlling the instruction pointer, and injecting shellcode. It also examines advanced techniques like return-oriented programming (ROP) and structured exception handling (SEH) for bypassing system security measures. The book concludes with a discussion of security mechanisms, such as ASLR and executable-space protection, that aim to prevent such attacks.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Penetration-Testing-Shellcode-network-level-vulnerabilities/dp/1788473736?&linkCode=ll1&tag=cvthunderx-20&linkId=36d0902b6912d32c9f45c44a60d3eb51&language=en_US&ref_=as_li_ss_tl
  
  

  ...more

  

  ---

• November 17, 2024Agile Security Operations: Engineering for agility in cyber defense, detection, and response

  This book, "Agile Security Operations," provides a comprehensive guide to modern cybersecurity practices, focusing on an approach that integrates active defense, incident response, and threat intelligence into a dynamic and agile framework. The author emphasizes the importance of shifting from traditional passive defenses to a more proactive, context-aware approach, where organizations continuously adapt to evolving threats and minimize the impact of attacks. The book explores key concepts such as defensible architecture, the Cynefin framework for managing uncertainty, and the MITRE ATT&CK framework for understanding attacker tactics, providing practical guidance for organizations to build a robust and resilient security posture. It also addresses the business aspects of cybersecurity, including risk management, strategy development, and the measurement of security program effectiveness.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Agile-Security-Operations-Engineering-detection/dp/1801815518?&linkCode=ll1&tag=cvthunderx-20&linkId=9ee319d89fe19dc79308f1f43adf170b&language=en_US&ref_=as_li_ss_tl

  ...more

  

  ---

• November 17, 2024Cisco Networks: Engineers' Handbook of Routing, Switching, and Security with IOS, NX-OS, and ASA

  The provided Book is from a book titled "Cisco Networks," which appears to be a guide to networking concepts and technologies, specifically focusing on Cisco products and technologies. The text covers a broad range of topics, including networking fundamentals, layer 2 and layer 3 protocols, network security, troubleshooting, and advanced networking concepts such as QoS and data center technologies. The text provides a comprehensive overview of networking for individuals who want to learn more about Cisco networking devices and how to configure and manage them effectively.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  
  

  ...more

  

  ---

• November 17, 2024Cisco Catalyst 9000 - A new era of intent-based networking

  This Book, written by a team of Cisco engineers, aims to introduce the Cisco Catalyst 9000 family of switches. It highlights the new era of intent-based networking, outlining the Catalyst 9000's key features and functionalities, including its architecture, high availability, security, and Quality of Service (QoS). The document also explores its application in various networking models like Multi-Layer Campus, Collapsed Core, Routed Access, Campus MPLS, Campus Wireless, and Software-Defined Access (SD-Access).
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  

  ...more

  

  ---

• November 17, 2024CISA Review Manual, 27th Edition

  The Book is a portion of a review manual for the Certified Information Systems Auditor (CISA) exam. It covers various aspects of information systems auditing and assurance, including IT governance, information systems implementation, information systems operations, and security. It provides guidance on planning, executing, and reporting IS audits. The text also highlights key concepts and principles relevant to the CISA exam, such as risk management, control objectives, and testing methodologies. In addition, it delves into specific IT controls, including access control, data security, and network security, and discusses emerging technologies such as cloud computing, virtualization, and mobile devices. The information is presented in a concise and structured manner, making it easy to navigate and understand.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/CISA-Review-Manual-27th-Isaca/dp/1604207671?&linkCode=ll1&tag=cvthunderx-20&linkId=54630d2283b1e3a4804d042b0c308a7a&language=en_US&ref_=as_li_ss_tl
  
  

  ...more

  

  ---

• November 17, 2024CISA Review Manual, 26th Edition

  The provided Book is an excerpt from the CISA Review Manual, 26th Edition, a study guide that prepares individuals for the Certified Information Systems Auditor (CISA) exam. The CISA exam tests an individual’s knowledge in areas like information systems auditing, control, and security. This guide focuses on helping readers understand and prepare for the Information Systems Auditing portion of the exam. The excerpt focuses on various types of audits, audit objectives, and key steps involved in conducting a successful audit. It also mentions the importance of using auditing standards and ensuring independence throughout the audit process.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/CISA-Review-Manual-26th-ISACA/dp/1604203676?&linkCode=ll1&tag=cvthunderx-20&linkId=9b2f87c2dfb8609d034b2cb8620c3371&language=en_US&ref_=as_li_ss_tl
  
  
  

  ...more

  

  ---

• November 17, 2024Certified Application Security Engineer | JAVA: Technology Workbook

  This Book is a textbook for the Certified Application Security Engineer (CASE) exam, focusing specifically on Java technology. The book covers a wide range of topics related to application security, including threat modeling, secure coding practices, cryptography, authentication and authorization, session management, error handling, static and dynamic application security testing, and deployment security. It also discusses the importance of secure software development practices and the need for security to be considered throughout the entire development lifecycle. The book includes practice questions and answers, as well as real-world examples to help readers understand the concepts and apply them in their own work.
  
  You can listen and download our episodes for free on more than 10 different platforms:
  https://linktr.ee/cyber_security_summary
  
  Get the Book now from Amazon:
  https://www.amazon.com/Certified-Application-Security-Engineer-JAVA/dp/1711927465?&linkCode=ll1&tag=cvthunderx-20&linkId=f911b14f085631714cd5a906233876eb&language=en_US&ref_=as_li_ss_tl
  
  

  ...more

  

  ---