Tables of Contents for Incident Response

search for books and compare prices

Tables of Contents for Incident Response

Chapter/Section Title

Page #

Page Count

Foreword

ix

Preface

xiii

What Is Incident Response?

1

14

Real-Life Incidents

2

5

What Is an Incident?

7

1

About the Bad Guys

8

1

What Is Incident Response?

8

3

Risk Assessment and Incident Response

11

2

Development of Incident Response Efforts

13

1

Are You Ready? Are You Willing?

14

1

Incident Response Teams

15

17

Who Should Do It?

16

1

Public Resource Teams

17

2

Internal Teams

19

3

Commercial Teams

22

3

Vendor Teams

25

2

Ad Hoc Teams

27

1

Forum of Incident Response and Security Teams (FIRST)

28

1

Now Who Should Do It?

29

3

Planning the Incident Response Program

32

14

Establishing the Incident Response Program

32

10

Internal Versus External

42

1

Types of Incidents

43

1

Who Are the Clients?

44

1

Summary

45

1

Mission and Capabilities

46

24

Roles and Responsibilities

47

3

Staffing and Training

50

1

Involving the Critical Players

51

4

List of Contacts

55

1

Setting Up a Hotline

56

1

Establishing Procedures

57

1

Awareness and Advertising

58

1

Fire Drills

59

3

Issues and Pitfalls

62

8

State of the Hack

70

26

The Moving Target

71

1

Keeping Up with Attack Profiles

72

3

Training

75

21

Incident Response Operations

96

11

We've Been Hit---Now What?

97

1

Incident Response Processes

98

6

While Under Pressure

104

3

Tools of the Trade

107

48

What's Out There?

108

3

Network-Based Tools

111

1

Network Monitors and Protocol Analyzers

112

8

Network-Based Intrusion Detection Systems

120

5

Network Vulnerability Scanners

125

6

Other Essential Network-Based Tools

131

2

Host-Based Tools

133

6

Communications

139

4

Encryption

143

3

Removable Storage Media

146

3

The Incident Kit

149

3

If We Ruled the World

152

3

Resources

155

12

Security Information on the Web

155

1

Incident Response Team Resources

156

1

Commercial Incident Response Service Providers

157

2

Antivirus Products

159

1

Mailing Lists and Newsgroups

159

1

U.S. Government Resources

160

1

Training, Conferences, and Certification Programs

161

2

Legal Resources

163

4

A. First

167

27

B. Sample Incident Report

194

3

Index

197