Network Security Assessment, 2nd Edition
Know Your Network
Publisher: O'Reilly Media
Final Release Date: November 2007
Pages: 508

How secure is your network? The best way to find out is to attack it. Network Security Assessment provides you with the tricks and tools professional security consultants use to identify and assess risks in Internet-based networks-the same penetration testing model they use to secure government, military, and commercial networks. With this book, you can adopt, refine, and reuse this testing model to design and deploy networks that are hardened and immune from attack.

Network Security Assessment demonstrates how a determined attacker scours Internet-based networks in search of vulnerable components, from the network to the application level. This new edition is up-to-date on the latest hacking techniques, but rather than focus on individual issues, it looks at the bigger picture by grouping and analyzing threats at a high-level. By grouping threats in this way, you learn to create defensive strategies against entire attack categories, providing protection now and into the future.

Network Security Assessment helps you assess:

  • Web services, including Microsoft IIS, Apache, Tomcat, and subsystems such as OpenSSL, Microsoft FrontPage, and Outlook Web Access (OWA)

  • Web application technologies, including ASP, JSP, PHP, middleware, and backend databases such as MySQL, Oracle, and Microsoft SQL Server

  • Microsoft Windows networking components, including RPC, NetBIOS, and CIFS services

  • SMTP, POP3, and IMAP email services

  • IP services that provide secure inbound network access, including IPsec, Microsoft PPTP, and SSL VPNs

  • Unix RPC services on Linux, Solaris, IRIX, and other platforms

  • Various types of application-level vulnerabilities that hacker tools and scripts exploit

Assessment is the first step any organization should take to start managing information risks correctly. With techniques to identify and assess risks in line with CESG CHECK and NSA IAM government standards, Network Security Assessment gives you a precise method to do just that.
Table of Contents
Product Details
About the Author
Recommended for You
Customer Reviews


by PowerReviews
oreillyNetwork Security Assessment, 2nd Edition

(based on 1 review)

Ratings Distribution

  • 5 Stars



  • 4 Stars



  • 3 Stars



  • 2 Stars



  • 1 Stars



Reviewed by 1 customer

Displaying review 1

Back to top

(1 of 1 customers found this review helpful)


Great Book for Pen Testers, Admins, and IT Security

By jdruin

from Undisclosed

Comments about oreilly Network Security Assessment, 2nd Edition:

This book covers both tools and techniques for investigating the security of networks but also provides a methodology on how to proceed.

In the first part, the methodology and tool used are listed and covered. Then the author explains how to investigate the network via querying DNS and scanning the edges of the networks. Specific areas are looked at as well such as web services, remote login and remote desktops, email servers, vpn connections, open ports and open services running as daemons.

For the mindset as much as the practical advice, this is a great book for the toolbox.

Displaying review 1

Back to top

Buy 2 Get 1 Free Free Shipping Guarantee
Buying Options
Immediate Access - Go Digital what's this?