Skip to main content
Elsevier

Syngress

  • Next-Generation VAPT

    Combining OSINT and AI-ML for Enhanced Vulnerability Assessment and Penetration Testing
    • 1st Edition
    • Ravi Sheth + 4 more
    • English
    Next-Generation VAPT: Combining OSINT and AI/ML for Enhanced Vulnerability Assessment and Penetration Testing empowers information security threat intelligence with the fusion of Open-Source Intelligence Tools (OSINT) and Artificial Intelligence and Machine Learning (AI/ML) to identify and detect vulnerabilities more efficiently and effectively. The book highlights the concept of OSINT for gathering actionable threat intelligence and AI/ML for automating threat detection, which ultimately enhances VAPT processes. The authors explain concepts for assessing the security of networks, wireless networks, performing VAPT on mobile devices, and conducting red teaming, which helps end users deal with upcoming threats at an early stage.It focuses on using machine intelligence for developing and validating exploits and AI-driven exploitation testing, which helps field experts discover and exploit vulnerabilities more quickly and accurately. Readers will find essential ethical and legal considerations in AI/ML and OSINT-based VAPT, ensuring responsible and compliant testing practices, accountability, and transparency. Industry Case Studies with solutions and safeguards are an integral part of the books applied approach.

  • Synthetic Media, Deepfakes, and Cyber Deception

    Attacks, Analysis, and Defenses
    • 1st Edition
    • Cameron H. Malin
    • English
    Synthetic Media, Deepfakes, and Cyber Deception: Attacks, Analysis, and Defenses introduces the only analytical Synthetic Media Analysis Framework (SMAF) to help describe cyber threats and help security professionals anticipate and analyze attacks. This framework encompasses seven dimensions: Credibility, Control, Medium, Interactivity, Familiarity, Intended Target, and Evocation. Synthetic media is a broad term that encompasses the artificial manipulation, modification, and production of information, covering a spectrum from audio-video deepfakes to text-based chatbots. Synthetic media provides cyber attackers and scammers with a game-changing advantage over traditional ROSE attacks because they have the potential to convincingly impersonate close associates through text, imagery, voice, and video. This burgeoning threat has yet to be meaningfully addressed through any written treatment on the topic. The book is co-authored by three cyber influence and deception experts who have gained deep knowledge and experience on the topic through diverse, true operational pathways and backgrounds. The diversity and perspectives of the author team makes the content in the book the broadest and deepest treatment of synthetic media attacks available to readers.

  • Cyber Threat Intelligence for Cloud Systems

    A Comprehensive Guide to Becoming an Analyst
    • 1st Edition
    • Gianni D'Angelo
    • English
    Cyber Threat Intelligence for Cloud Systems: A Comprehensive Guide to Becoming an Analyst begins with the foundational study of asset vulnerabilities, laying the groundwork for understanding the weak points within cloud environments. It then introduces tools and methodologies for the automated collection and supervision of data from assets, culminating in the exploration of advanced techniques, such as Artificial Intelligence and Machine Learning for data analysis and automated threat response. Alongside theoretical concepts, the book includes practical examples, hands-on exercises in Python, existing tools, and real-world case studies to help readers solidify their understanding and apply what they’ve learned.Cybersecurit... is one of the fastest-growing fields in today’s technological landscape, and with the increasing complexity and pervasiveness of cyber threats, especially in cloud environments, the need for qualified professionals such as Cyber Threat Analysts has never been more critical. Here, author Gianni D’Angelo provides the technical knowledge required to analyze and defend digital infrastructures, covering both traditional and modern approaches, highlighting how CTI supports decision-making and proactive defense strategies.

  • The Basics of Hacking and Penetration Testing

    • 3rd Edition
    • Thomas Wilhelm + 1 more
    • English
    The Basics of Hacking and Penetration Testing, Third Edition serves as an introduction to the steps required to complete a penetration test or perform an ethical hack from beginning to end. The book teaches readers how to properly utilize and interpret the results of the modern-day hacking tools required to complete a penetration test. It provides a simple and clear explanation of how to effectively utilize these tools, along with a four-step methodology for conducting a penetration test or hack, thus equipping readers with the know-how required to jump start their careers and gain a better understanding of offensive security.Each chapter contains hands-on examples and exercises that are designed to teach learners how to interpret results and utilize those results in later phases. This new edition includes six all-new chapters, and has been completely updated to the most current industry-standard tools, testing methodologies, and exploitable targets. New chapters on setting up a Pen Testing Lab and Hacking Careers have been added to expand and update the book. This is complemented by videos for in class use.

  • Quantum Cryptography and Annealing for Securing Industrial IoT

    • 1st Edition
    • Seifedine Kadry + 5 more
    • English
    Quantum Cryptography and Annealing for Securing Industrial IoT focuses on the rapidly evolving field of quantum security solutions for Industrial Internet of Things (IIoT) platforms, emphasizing the critical intersection of quantum cryptography, post-quantum cryptography, and their practical applications in IIoT. The book’s primary objective is to drive advancements that significantly intersect quantum cryptography in securing IIoT devices, elevate secure IIoT infrastructures, and optimize the overall delivery. Distinguishing itself by prioritizing practical applications, it offers a nuanced perspective on how technological integrations in quantum cryptosystems are actively employed in real-world scenarios. The authors meticulously examine the role of quantum cryptosystems in the design, analysis, and optimization of IIoT-specific hardware, covering their resilience to physical and side-channel attacks and evaluating performance. This book strikes a balance between theoretical concepts and practical applications, providing insights into the challenges and solutions encountered in applying quantum cryptographical principles to IIoT engineering problems.

  • Edge Intelligence

    Advanced Deep Transfer Learning for IoT Security
    • 1st Edition
    • Jawad Ahmad + 5 more
    • English
    Edge Intelligence: Advanced Deep Transfer Learning for IoT Security presents a comprehensive exploration into the critical intersection of cybersecurity, edge computing, and deep learning, offering practitioners, researchers, and cybersecurity professionals a definitive guide to protect IoT/IIoT systems. This book delves into the synergistic potential of edge computing and advanced machine/deep learning algorithms, providing insights into lightweight and resource-efficient models with a special focus on resource-constrained edge devices. The rapidly evolving nature of cyberattacks underscores the need for updated and integrated resources that address the intersection of cybersecurity, edge computing, and deep learning. The authors address this issue by offering practical insights, lightweight models, and proactive defense mechanisms tailored to the unique challenges of securing edge devices and networks. This book is not only written to provide its audience effective strategies to detect and mitigate network intrusions by leveraging edge intelligence and advanced deep transfer learning techniques but also to provide practical insights and implementation guidelines tailored to resource-constrained edge devices.

  • Professional Penetration Testing

    Creating and Learning in a Hacking Lab
    • 3rd Edition
    • Thomas Wilhelm
    • English
    Professional Penetration Testing: Creating and Learning in a Hacking Lab, Third Edition walks the reader through the entire process of setting up and running a pen test lab. Penetration testing—the act of testing a computer network to find security vulnerabilities before they are maliciously exploited—is a crucial component of information security in any organization. Chapters cover planning, metrics, and methodologies, the details of running a pen test, including identifying and verifying vulnerabilities, and archiving, reporting and management practices. The material presented will be useful to beginners through advanced practitioners.Here, author Thomas Wilhelm has delivered penetration testing training to countless security professionals, and now through the pages of this book, the reader can benefit from his years of experience as a professional penetration tester and educator. After reading this book, the reader will be able to create a personal penetration test lab that can deal with real-world vulnerability scenarios. "...this is a detailed and thorough examination of both the technicalities and the business of pen-testing, and an excellent starting point for anyone getting into the field." –Network Security

  • Antivirus Engines

    From Methods to Innovations, Design, and Applications
    • 1st Edition
    • Paul A. Gagniuc
    • English
    Antivirus Engines: From Methods to Innovations, Design, and Applications offers an in-depth exploration of the core techniques employed in modern antivirus software. It provides a thorough technical analysis of detection methods, algorithms, and integration strategies essential for the development and enhancement of antivirus solutions. The examples provided are written in Python, showcasing foundational, native implementations of key concepts, allowing readers to gain practical experience with the underlying mechanisms of antivirus technology.The text covers a wide array of scanning techniques, including heuristic and smart scanners, hexadecimal inspection, and cryptographic hash functions such as MD5 and SHA for file integrity verification. These implementations highlight the crucial role of various scanning engines, from signature-based detection to more advanced models like behavioral analysis and heuristic algorithms. Each chapter provides clear technical examples, demonstrating the integration of modules and methods required for a comprehensive antivirus system, addressing both common and evolving threats.Beyond simple virus detection, the content illustrates how polymorphic malware, ransomware, and state-sponsored attacks are tackled using multi-layered approaches. Through these examples, students, researchers, and security professionals gain practical insight into the operation of antivirus engines, enhancing their ability to design or improve security solutions in a rapidly changing threat environment.

  • Industrial Network Security

    Securing Critical Infrastructure Networks for Smart Grid, SCADA, and Other Industrial Control Systems
    • 3rd Edition
    • Eric D. Knapp
    • English
    As the sophistication of cyber-attacks increases, understanding how to defend critical infrastructure systems—energy production, water, gas, and other vital systems—becomes more important, and heavily mandated. Industrial Network Security, Third Edition arms you with the knowledge you need to understand the vulnerabilities of these distributed supervisory and control systems.Author Eric Knapp examines the unique protocols and applications that are the foundation of Industrial Control Systems (ICS) and provides clear guidelines for their protection. This comprehensive reference gives you thorough understanding of the challenges facing critical infrastructures, new guidelines and security measures for infrastructure protection, knowledge of new and evolving security tools, and pointers on SCADA protocols and security implementation.

  • CISSP® Study Guide

    • 4th Edition
    • Joshua Feldman + 2 more
    • English
    CISSP® Study Guide, Fourth Edition provides the latest updates on CISSP® certification, the most prestigious, globally-recognized, vendor neutral exam for information security professionals. In this new edition, readers will learn about what's included in the newest version of the exam’s Common Body of Knowledge. The eight domains are covered completely and as concisely as possible. Each domain has its own chapter, including specially designed pedagogy to help readers pass the exam. Clearly stated exam objectives, unique terms/definitions, exam warnings, learning by example, hands-on exercises, and chapter ending questions help readers fully comprehend the material.

Browse by Publisher