 Название: The Hidden Potential of DNS In Security: Combating Malware, Data Exfiltration, and more - The Guide for Security Professionals
Автор: Joshua Kuo, Ross Gibson
Издательство: Infoblox
Год: 2023
Страниц: 192
Язык: английский
Формат: pdf, epub
Размер: 10.1 MB
DNS is a foundational element of network communications. It’s also the starting point for countless cyberattacks. Threat actors abuse DNS to install malware, exfiltrate data, and perpetrate malware threats. Cyber threats that leverage DNS are widespread, sophisticated, and rapidly evolving. DNS is used by over 90 percent of malware and in an ever-growing range of pernicious attacks.
However, despite its vulnerabilities, DNS can unlock a hidden world of security capabilities that can help protect today’s highly distributed and cloud-integrated networks. The Hidden Potential of DNS in Security reveals how attackers exploit DNS and how cybersecurity professionals can proactively use DNS to turn the tables and mitigate those threats. Knowing how to leverage the protective capabilities of DNS can give you an unprecedented head start in stopping today’s advanced cyberthreats. This book gives you that knowledge.
In it, you will discover:
Why DNS is inherently vulnerable and why knowledge of DNS is now crucial for security teams
How malware uses DNS to avoid detection and communicate with command-and-control (C2) infrastructure
How threat actors leverage DNS in executing a broad array of attacks involving look-alike domains, domain generation algorithms, DNS tunneling, data exfiltration, and cache poisoning
What DNSSEC is (and is not) and how it works
How recently emerging encrypted DNS standards can impact security controls, along with the security advantages they can provide
How DNS can be leveraged in Zero Trust architectures
How you can improve your security posture using the DNS infrastructure you already have
Who This Book Is For:
This vendor-agnostic book is written for security professionals who want to understand the risks and rewards of the DNS (Domain Name System) in a security context. We understand that DNS is not something most security practitioners spend a great deal of time studying, but it is nonetheless a critical component that security professionals must understand. Thus, this book focuses on the use of DNS by a security practitioner rather than how a system administrator would secure a DNS infrastructure. If you are a security professional trying to determine how to best leverage your DNS infrastructure to further your security mission, this book is for you. We assume you, the reader, are familiar with basic networking concepts and terms such as ICMP, UDP, TCP, IP addressing, and ports. However, we do not assume you have any understanding of DNS beyond the fact that it maps domain names to IP addresses and vice versa.
Скачать The Hidden Potential of DNS In Security: Combating Malware, Data Exfiltration, and more - The Guide for Security Professionals
|
Разделы сайта
Авторизация
Реклама
The Hidden Potential of DNS In Security: Combating Malware, Data Exfiltration, and more 
