To calculate the overall star rating and percentage breakdown by star, we don’t use a simple average. Instead, our system considers things like how recent a review is and if the reviewer bought the item on Amazon. It also analyses reviews to verify trustworthiness.
I just finished this, my first "blue team" read. I don't have anything to compare it to but, man -- I feel like everything I need to know is in it. It starts from the beginning and ends at the end and seems to tell you everything you need to know along the way.
It's almost like a reference book. Find the subject your looking for and it will tell you everything you need to know to start searching online for help with your particulars. It's not a fun read, but it's thorough and very readable.
Recommended read for whatever reason you're looking at defensive security.
Chris Sanders knows his stuff. This is by far one of the best books I've read on this subject. Very thorough and indepth yet presented in a way that makes it easy to grasp the material. You will have a firm grasp of network security monitoring after reading this book.
This is the book that started it all for me. If you are an MSSP and you are trying to get the hang of the whole security thing this books is for you. While content is somewhat outdated this book teaches you how to think and how to get you SOC going. Highly recommended.
A must read for everyone working (or planning to work) to protect an operational network. Filled with practical advice in building fundamental skills and solutions in environments with constrained budgets.
Highly recommended! Applied NSM should be in every security professional's bookshelf. Not only does it cover effective security monitoring methodologies and best practices, but walks you through from tool selection, installation, configuration, and maintenance.
Overall, the book is very well written and carefully articulated; it almost leaves you without having to question or second guess the information provided. It just makes sense!
Disclaimers: I’m a long time NSM practitioner and I work with Smith & Bianco. Chris was gracious enough to provide me with a PDF copy of the book for review. - - - -
Applied NSM is a powerhouse of practitioner knowledge. Divided into three primary sections (Collection, Detection, & Analysis) ANSM focuses on the key staples necessary for establishing a successful NSM program and how to get up and running.
The book weighs in at an impressive 465 pages (including appendixes). However, depending on the readers familiarity with NSM and exposure to other related works on the subject, there could be some overlap.
The areas I found most valuable that contributed new concepts to my “NSM library" included:
Chapter 2’s discussion on the Applied Collection Framework Chapter 4’s coverage of SiLK for analysis of flow data Chapter 6’s coverage of LogStash and Kibana Chapter 10’s coverage on Bro Chapter 11’s coverage on Anomaly based detection via SiLK tools Appendix 3 makes for a handy desk side reference if you work with raw packet captures on a daily basis.
For these sections alone, ANSM makes it well worth the purchase and addition to your collection. Speaking of which, all of the proceeds from this book go to several charities, and after having initially reviewed it for free, I still decided to purchase a copy on Kindle to have as a desk side reference and support such great causes.
I purchased this book as part of a high level network monitoring project that I am working on within the Healthcare sector. This book was outstanding, if you want to learn about collection, detection and analysis of applied network security monitoring, this is the book for you. The content was outstanding, However I do have readers some advance warning. Please understand the basic dynamics of networking. This means please know the following Microsoft products, Cisco products etc. All the key important things a System Admin or Network Admin should already know. Please understand how to segment a network. Overall I found this book outstanding, I started reading the book when I received it. I am half way through the book, and thus far I like what I am reading. Great job.