Skip to main content
Elsevier

Books in Social sciences

The Social Sciences collection forms a definitive resource for those entering, researching, or teaching in any of the many disciplines making up this interdisciplinary area of study. Written by experts and researchers from both Academic and Commercial domains, titles offer global scope and perspectives.

Key subject areas include: Library and Information Science; Transportation; Urban Studies; Geography, Planning, and Development; Security; Emergency Management.

  • Securing Windows Server 2008

    Prevent Attacks from Outside and Inside Your Organization
    • 1st Edition
    • Aaron Tiensivu
    • English
    Microsoft hails the latest version of its flagship server operating system, Windows Server 2008, as "the most secure Windows Server ever". However, to fully achieve this lofty status, system administrators and security professionals must install, configure, monitor, log, and troubleshoot a dizzying array of new features and tools designed to keep the bad guys out and maintain the integrity of their network servers. This is no small task considering the market saturation of Windows Server and the rate at which it is attacked by malicious hackers. According to IDC, Windows Server runs 38% of all network servers. This market prominence also places Windows Server at the top of the SANS top 20 Security Attach Targets. The first five attack targets listed in the SANS top 20 for operating systems are related to Windows Server. This doesn't mean that Windows is inherently less secure than other operating systems; it's simply a numbers game. More machines running Windows Server. More targets for attackers to hack.As a result of being at the top of the "most used" and "most hacked" lists, Microsoft has released a truly powerful suite of security tools for system administrators to deploy with Windows Server 2008. This book is the comprehensive guide needed by system administrators and security professionals to master seemingly overwhelming arsenal of new security tools including: 1. Network Access Protection, which gives administrators the power to isolate computers that don't comply with established security policies. The ability to enforce security requirements is a powerful means of protecting the network.2. Enhanced solutions for intelligent rules and policies creation to increase control and protection over networking functions, allowing administrators to have a policy-driven network.3. Protectio... of data to ensure it can only be accessed by users with the correct security context, and to make it available when hardware failures occur.4. Protection against malicious software with User Account Control with a new authentication architecture.5. Incr... control over your user settings with Expanded Group Policy....to name just a handful of the new security features. In short, Windows Server 2008 contains by far the most powerful and complex suite of security tools ever released in a Microsoft Server product. Securing Windows Server 2008 provides system administrators and security professionals with the knowledge they need to harness this power.

  • Emergency Management and Tactical Response Operations

    Bridging the Gap
    • 1st Edition
    • Thomas D. Phelan
    • English
    Is emergency management education undoing an age-old tradition in the American Fire Service? Has the time arrived to educate emergency managers in college classrooms rather than in twenty years of tactical operations experience? Over one hundred forty-three (143) institutions of higher education are now offering certificate or degree programs in emergency management with no tactical operations experience required for admission. Resistance by veteran law enforcement officers and fire fighters may have to be overcome if we are to prepare emergency managers with required skill sets. Dr. Tom Phelan explores the skills being taught to emergency management students and addresses the concerns of experienced first responders in accepting their leadership.

  • Nessus Network Auditing

    • 2nd Edition
    • Russ Rogers
    • English
    The Updated Version of the Bestselling Nessus Book. This is the ONLY Book to Read if You Run Nessus Across the Enterprise. Ever since its beginnings in early 1998, the Nessus Project has attracted security researchers from all walks of life. It continues this growth today. It has been adopted as a de facto standard by the security industry, vendor, and practitioner alike, many of whom rely on Nessus as the foundation to their security practices. Now, a team of leading developers have created the definitive book for the Nessus community.Perform a Vulnerability AssessmentUse Nessus to find programming errors that allow intruders to gain unauthorized access.Obtain and Install NessusInstall from source or binary, set up up clients and user accounts, and update your plug-ins.Modify the Preferences TabSpecify the options for Nmap and other complex, configurable components of Nessus.Understand Scanner Logic and Determine Actual RiskPlan your scanning strategy and learn what variables can be changed.Prioritize VulnerabilitiesPrior... and manage critical vulnerabilities, information leaks, and denial of service errors.Deal with False PositivesLearn the different types of false positives and the differences between intrusive and nonintrusive tests.Get Under the Hood of NessusUnderstand the architecture and design of Nessus and master the Nessus Attack Scripting Language (NASL).Scan the Entire Enterprise NetworkPlan for enterprise deployment by gauging network bandwith and topology issues.

  • A Quick Guide to Health and Safety

    • 1st Edition
    • R Gilbert
    • English
    Health and safety issues now impose upon almost every part of business life. The system of enforcement is managed and implemented in the UK by The Health and Safety Executive (HSE) – but at times it can be difficult to know exactly which bits of this elaborate spider’s web should be applied in a given instance, and which are most important. This Quick Guide puts the subject into context, providing a rational overview and a valid starting point to applying health and safety in the workplace, and offers a concise and readily accessible interpretation of what health and safety legislation means in practice.

  • Library Project Funding

    A Guide to Planning and Writing Proposals
    • 1st Edition
    • Julie Carpenter
    • English
    Managers and staff in libraries and information services in all sectors are increasingly required to prepare project proposals and bid for funding, usually for external funding, but also as part of internal strategic planning and management processes. The projects proposed must be realistic and feasible, because library managers and staff will be required to deliver their project on time and in budget. If managers get the planning wrong at project proposal stage, the consequences for implementation can be difficult to overcome. This book provides guidance on the various steps involved in project development, planning and the preparation of bids for funding based on the author’s own experience and that of many organisations in the cultural heritage and education sectors. It guides service managers and staff through the task of scoping, developing and writing viable, realistic and winning proposals, drawing on a range of techniques from strategic planning, financial management, project management and business.

  • The Bioarchaeology of Metabolic Bone Disease

    • 1st Edition
    • Megan B. Brickley + 1 more
    • English
    The Bioarchaeology of Metabolic Bone Disease provides a comprehensive and invaluable source of information on this important group of diseases. It is an essential guide for those engaged in either basic recording or in-depth research on human remains from archaeological sites. The range of potential tools for investigating metabolic diseases of bone are far greater than for many other conditions, and building on clinical investigations, this book will consider gross, surface features visible using microscopic examination, histological and radiological features of bone, that can be used to help investigate metabolic bone diseases.

  • OS X Exploits and Defense

    Own it...Just Like Windows or Linux!
    • 1st Edition
    • Chris Hurley + 6 more
    • English
    Contrary to popular belief, there has never been any shortage of Macintosh-related security issues. OS9 had issues that warranted attention. However, due to both ignorance and a lack of research, many of these issues never saw the light of day. No solid techniques were published for executing arbitrary code on OS9, and there are no notable legacy Macintosh exploits. Due to the combined lack of obvious vulnerabilities and accompanying exploits, Macintosh appeared to be a solid platform. Threats to Macintosh's OS X operating system are increasing in sophistication and number. Whether it is the exploitation of an increasing number of holes, use of rootkits for post-compromise concealment or disturbed denial of service, knowing why the system is vulnerable and understanding how to defend it is critical to computer security. Macintosh OS X Boot Process and Forensic Software All the power, all the tools, and all the geekery of Linux is present in Mac OS X. Shell scripts, X11 apps, processes, kernel extensions...it's a UNIX platform....Now, you can master the boot process, and Macintosh forensic software Look Back Before the Flood and Forward Through the 21st Century Threatscape Back in the day, a misunderstanding of Macintosh security was more or less industry-wide. Neither the administrators nor the attackers knew much about the platform. Learn from Kevin Finisterre how and why that has all changed! Malicious Macs: Malware and the Mac As OS X moves further from desktops, laptops, and servers into the world of consumer technology (iPhones, iPods, and so on), what are the implications for the further spread of malware and other security breaches? Find out from David Harley Malware Detection and the Mac Understand why the continuing insistence of vociferous Mac zealots that it "can't happen here" is likely to aid OS X exploitationg Mac OS X for Pen Testers With its BSD roots, super-slick graphical interface, and near-bulletproof reliability, Apple's Mac OS X provides a great platform for pen testing WarDriving and Wireless Penetration Testing with OS X Configure and utilize the KisMAC WLAN discovery tool to WarDrive. Next, use the information obtained during a WarDrive, to successfully penetrate a customer's wireless network Leopard and Tiger Evasion Follow Larry Hernandez through exploitation techniques, tricks, and features of both OS X Tiger and Leopard, using real-world scenarios for explaining and demonstrating the concepts behind them Encryption Technologies and OS X Apple has come a long way from the bleak days of OS9. THere is now a wide array of encryption choices within Mac OS X. Let Gareth Poreus show you what they are.

  • The Real MCTS/MCITP Exam 70-649 Prep Kit

    Independent and Complete Self-Paced Solutions
    • 1st Edition
    • Brien Posey
    • English
    This exam is designed to validate Windows Server 2003 Microsoft Certified Systems Administrators (MCSEs) AD, Network Infrastructure, and Application Platform Technical Specialists skills. The object of this exam is to validate only the skills that are are different from the existing MCSE skills. This exam will fulfill the Windows Server 2008 Technology Specialist requirements of Exams 70-640, 70-642, and 70-643.The Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 credential is intended for information technology (IT) professionals who work in the complex computing environment of medium to large companies. The MCTS candidate should have at least one year of experience implementing and administering a network operating system in an environment that has the following characteristics: 250 to 5,000 or more users; three or more physical locations; and three or more domain controllers. MCTS candidates will manage network services and resources such as messaging, a database, file and print, a proxy server, a firewall, the Internet, an intranet, remote access, and client computer management. In addition MCTS candidates must understant connectivity requirements such as connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to the Internet.

  • The Real MCTS/MCITP Exam 70-643 Prep Kit

    Independent and Complete Self-Paced Solutions
    • 1st Edition
    • Brien Posey + 5 more
    • English
    This exam is designed to validate Windows Server 2008 applications platform configuration skills. This exam will fulfill the Windows Server 2008 Technology Specialist requirements of Exam 70-643. The Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 credential is intended for information technology (IT) professionals who work in the complex computing environment of medium to large companies. The MCTS candidate should have at least one year of experience implementing and administering a network operating system in an environment that has the following characteristics: 250 to 5,000 or more users; three or more physical locations; and three or more domain controllers. MCTS candidates will manage network services and resources such as messaging, a database, file and print, a proxy server, a firewall, the Internet, an intranet, remote access, and client computer management. In addition MCTS candidates must understant connectivity requirements such as connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to the Internet.

  • The Real MCTS/MCITP Exam 70-648 Prep Kit

    Independent and Complete Self-Paced Solutions
    • 1st Edition
    • Brien Posey
    • English
    This exam is designed to validate Windows Server 2003 Microsoft Certified Systems Administrators (MCSAs) AD and Application Platform Technical Specialists skills. The object of this exam is to validate only the skills that are are different from the existing MCSA skills. This exam will fulfill the Windows Server 2008 Technology Specialist requirements of Exams 70-640 and 70-643.The Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 credential is intended for information technology (IT) professionals who work in the complex computing environment of medium to large companies. The MCTS candidate should have at least one year of experience implementing and administering a network operating system in an environment that has the following characteristics: 250 to 5,000 or more users; three or more physical locations; and three or more domain controllers. MCTS candidates will manage network services and resources such as messaging, a database, file and print, a proxy server, a firewall, the Internet, an intranet, remote access, and client computer management. In addition MCTS candidates must understant connectivity requirements such as connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to the Internet.

  • Criminal Profiling

    An Introduction to Behavioral Evidence Analysis
    • 3rd Edition
    • Brent E. Turvey
    • English
    Now in its third edition, Criminal Profiling is established as an industry standard text. It moves evidence-based criminal profiling into a full embrace of the scientific method with respect to examining and interpreting behavioral evidence. If focuses on criminal profiling as an investigative and forensic process, helping to solve crime through an honest understanding of the nature and behavior of the most violent criminals. Throughout the text, the author outlines specific principles and practice standards for Behavioral Evidence Analysis, focusing on the application of theory and method to real cases. Criminal Profiling, Third Edition, is an ideal companion for students and professionals alike, including investigators, forensic scientists, criminologists, mental health professionals, and attorneys. With contributing authors representing law enforcement, academic, mental health, and forensic science communities, it offers a balanced perspective not found in other books on this subject. Readers will use it as a comprehensive reference text, a handbook for evaluating physical evidence, a tool to bring new perspectives to cold cases, and as an aid in preparing for criminal trials.

  • Managing Catastrophic Loss of Sensitive Data

    A Guide for IT and Security Professionals
    • 1st Edition
    • Constantine Photopoulos
    • English
    Offering a structured approach to handling and recovering from a catastrophic data loss, this book will help both technical and non-technical professionals put effective processes in place to secure their business-critical information and provide a roadmap of the appropriate recovery and notification steps when calamity strikes.

  • Metadata for Digital Resources

    Implementation, Systems Design and Interoperability
    • 1st Edition
    • Muriel Foulonneau + 1 more
    • English
    This book assists information professionals in improving the usability of digital objects by adequately documenting them and using tools for metadata management. It provides practical advice for libraries, archives, and museums dealing with digital collections in a wide variety of formats and from a wider variety of sources. This book is forward-thinking in its approach to using metadata to drive digital library systems, and will be a valuable resource for those creating and managing digital resources as technologies for using those resources grow and change.

  • Scholarly Communication in China, Hong Kong, Japan, Korea and Taiwan

    • 1st Edition
    • Jingfeng Xia
    • English
    This is one of the very few books that systematically explores the characteristics of scholarly communication outside the West. Over the last decade the advances in information technology have remodelled the foundation of scholarly communication. This book examines how countries/regions in East Asia (China, Japan, Korea and Taiwan) have reacted to the innovations in the conduct of research and in the exchange of ideas. It outlines the traditional systems of scholarly exchange in China, Japan, Korea and Taiwan, and then concentrates on the efforts of these countries/regions to provide revolutionary ways of writing, publishing, and reading of information produced by members of the academic community. It also discusses the achievements as well as challenges in the process of technology innovations, highlighting the uniqueness of practices in scholarly communication in this part of the world.

  • Digital Information Culture

    The Individual and Society in the Digital Age
    • 1st Edition
    • Luke Tredinnick
    • English
    Digital Information Culture is an introduction to the cultural, social and political impact of digital information and digital resources. The book is organised around themes, rather than theories and is arranged into three sections: culture, society and the individual. Each explores key elements of the social, cultural and political impact of digital information. The culture section outlines the origins of cyber culture in fifties pulp-fiction through to the modern day. It explores the issues of information overload, the threat of a digital dark age, and the criminal underbelly of digital culture. Section two, society, explores the economic and social impact of digital information, outlining key theories of the Information Age. Section three explores the impact of digital information and digital resources on the individual, exploring the changing nature of identity in a digital world.

  • Library Performance and Service Competition

    Developing Strategic Responses
    • 1st Edition
    • Larry Nash White
    • English
    A practice-driven and proven resource for library administrators of all types of libraries. The work describes how the library can identify the service environment factors impacting customers; strategic needs; identify library competitors; strategic abilities and service environment impacts; and use the combined results to develop proactive competitive responses that drive the service environment instead of reacting to the service environment. These strategic competitive responses would allow the library to increase the value of its service impact and effectiveness while increasing customer appreciation and the libraries advantage in the competitive service environment.

  • The Future of Information Architecture

    • 1st Edition
    • Peter Baofu
    • English
    The Future of Information Architecture examines issues surrounding why information is processed, stored and applied in the way that it has, since time immemorial. Contrary to the conventional wisdom held by many scholars in human history, the recurrent debate on the explanation of the most basic categories of information (eg space, time causation, quality, quantity) has been misconstrued, to the effect that there exists some deeper categories and principles behind these categories of information - with enormous implications for our understanding of reality in general. To understand this, the book is organised in to four main parts: Part I begins with the vital question concerning the role of information within the context of the larger theoretical debate in the literature. Part II provides a critical examination of the nature of data taxonomy from the main perspectives of culture, society, nature and the mind. Part III constructively invesitgates the world of information network from the main perspectives of culture, society, nature and the mind. Part IV proposes six main theses in the authors synthetic theory of information architecture, namely, (a) the first thesis on the simpleness-complicat... principle, (b) the second thesis on the exactness-vagueness principle (c) the third thesis on the slowness-quickness principle (d) the fourth thesis on the order-chaos principle, (e) the fifth thesis on the symmetry-asymmetry principle, and (f) the sixth thesis on the post-human stage.

  • Marketing the Best Deal in Town

    Your Library
    • 1st Edition
    • Nancy Rossiter
    • English
    This book covers basic marketing tenets and terminology, how to go about setting up a marketing plan, and contemporary topics such as branding and marketing to women. This book is illustrated throughout with successful strategies libraries are currently using to market their services. Skill-building exercises are included for students and practitioners and cases studies are incorporated for analyzing current library marketing issues.

  • Learning Commons

    Evolution and Collaborative Essentials
    • 1st Edition
    • Barbara Schader
    • English
    This book examines successfully planned and implemented learning commons at several different academic institutions around the world. These case studies provide a methodology for effective planning, implementation and assessment. Practical information is provided on how to collaborate with campus stakeholders, estimate budgeting and staffing and determine the equipment, hardware and software needs. Also provided are memoranda of understandings (MOUs), planning checklists and assessment tools. This book reflects a unifying focus on both the evolution of learning commons to learning spaces and the collaborative aspect of co-creating learning spaces.

  • The Real MCTS/MCITP Exam 70-642 Prep Kit

    Independent and Complete Self-Paced Solutions
    • 1st Edition
    • Brien Posey
    • English
    This exam is designed to validate Windows Server 2008 network infrastructure configuration skills. This exam will fulfill the Windows Server 2008 Technology Specialist requirements of Exam 70-642. This is a test for new certification seekers, not for those who are upgrading from Windows 2000/2003 MCSE/MCSA certification.The Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 credential is intended for information technology (IT) professionals who work in the complex computing environment of medium to large companies. The MCTS candidate should have at least one year of experience implementing and administering a network operating system in an environment that has the following characteristics: 250 to 5,000 or more users; three or more physical locations; and three or more domain controllers. MCTS candidates will manage network services and resources such as messaging, a database, file and print, a proxy server, a firewall, the Internet, an intranet, remote access, and client computer management. In addition MCTS candidates must understand connectivity requirements such as connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to the Internet.

  • The Real MCTS/MCITP Exam 70-640 Prep Kit

    Independent and Complete Self-Paced Solutions
    • 1st Edition
    • Anthony Piltzecker
    • English
    This exam is designed to validate Windows Server 2008 Active Directory skills. This exam will fulfill the Windows Server 2008 Technology Specialist requirements of Exam 70-640.The Microsoft Certified Technology Specialist (MCTS) on Windows Server 2008 credential is intended for information technology (IT) professionals who work in the complex computing environment of medium to large companies. The MCTS candidate should have at least one year of experience implementing and administering a network operating system in an environment that has the following characteristics: 250 to 5,000 or more users; three or more physical locations; and three or more domain controllers. MCTS candidates will manage network services and resources such as messaging, a database, file and print, a proxy server, a firewall, the Internet, an intranet, remote access, and client computer management. In addition MCTS candidates must understand connectivity requirements such as connecting branch offices and individual users in remote locations to the corporate network and connecting corporate networks to the Internet.

  • Kidnapping

    An Investigator's Guide to Profiling
    • 1st Edition
    • Diana M. Concannon
    • English
    Kidnapping: An Investigator's Guide to Profiling is based on a three-part analysis of 100 randomly selected kidnapping cases prosecuted in the United States that have survived Supreme Court appeal. The results of the analysis are incorporated into each chapter as part of the exploration of the inductive profile of each subtype, thereby offering a statistically based tool that can inform investigative strategies and the allocation of limited resources. The analysis includes standardized input from four levels of professional law enforcement including a forensic psychologist, a crime analyst, a detective, and a city prosecutor. Kidnapping: An Investigator's Guide to Profiling is an excellent resource for law enforcement and mental health professionals who are investigating and analyzing specific incidents of kidnapping, and will also appeal to the 6,000+ members of the American Academy of Forensic Sciences (AAFS).

  • Background Screening and Investigations

    Managing Hiring Risk from the HR and Security Perspectives
    • 1st Edition
    • W. Barry Nixon + 1 more
    • English
    Hiring highly qualified people is crucial to every company, and Background Screening and Investigations is an essential guide to succeeding in a turbulent business environment. A crucial part of any hiring process should be employment background screening, pre- and post-hire, which gives hiring personnel a glimpse into a person's past behavior patterns, propensities, and likely future behavior. Background Screening and Investigations describes all aspects of the employment background screening processes - its history and evolution, the imperative for implementing a screening process, and the creation of a comprehensive policy. Nixon and Kerr show how security and human resources professionals can work together to negotiate legal hurdles and make their background screening process successful.

  • Introduction to Security

    • 8th Edition
    • Robert Fischer + 1 more
    • English
    Introduction to Security has been the leading introduction to private security for over 30 years, celebrated for its balanced and professional approach to this increasingly important area. Now the 8th edition expands the key topics and adds material important in the 21st century environment. The author team brings together top-level professional experience in industry with years of teaching experience. As a recommended title for security certifications, it is a crucial resource for the 30,000+ ASIS International members, and is also used as a core security textbook in universities throughout the country. This is Butterworth-Heineman... best-selling security text of all time, an essential reference for all security professionals.

  • Check Point NGX R65 Security Administration

    • 1st Edition
    • Ralph Bonnell
    • English
    Check Point NGX R65 is the next major release of Check Point's flagship firewall software product, which has over 750,000 registered users. Check Point's NGX is the underlying security software platform for all of the company's enterprise firewall, VPN and management solutions. It enables enterprises of all sizes to reduce the cost and complexity of security management and ensure that their security systems can be easily extended to adapt to new and emerging threats. This title is a continuation of Syngress' best-selling references on Check Point's market leading Firewall and VPN products.

  • Biosecurity and Bioterrorism

    Containing and Preventing Biological Threats
    • 1st Edition
    • Jeffrey Ryan + 1 more
    • English
    Biosecurity and Bioterrorism is the first book to take a holistic approach to biosecurity with coverage of pathogens, prevention and response methodology. The book is organized into four thematic sections: Part I provides a conceptual understanding of biowarfare, bioterrorism and the laws we have to counteract this; Part II investigates known bioagents and the threat from emerging diseases; Part III focuses on agricultural terrorism and food security; Part IV outlines international, US, and local initiatives for biodefense and biosecurity. Case studies illustrate biodefense against both intentional terrorism and natural outbreaks. The authors bring an extraordinary combination of experience in academia and the clinical world, as well as real-world experience in technical and practical matters, to their writing. They make technical material clear and fascinating for readers with a basic knowledge of biology. Ryan and Glarum address the hazards in the context of vulnerability assessments and the planning strategies government and industry can take to prepare for and respond to such events.

  • Secrets Stolen, Fortunes Lost

    Preventing Intellectual Property Theft and Economic Espionage in the 21st Century
    • 1st Edition
    • Richard Power + 1 more
    • English
    The threats of economic espionage and intellectual property (IP) theft are global, stealthy, insidious, and increasingly common. According to the U.S. Commerce Department, IP theft is estimated to top $250 billion annually and also costs the United States approximately 750,000 jobs. The International Chamber of Commerce puts the global fiscal loss at more than $600 billion a year.Secrets Stolen, Fortunes Lost offers both a fascinating journey into the underside of the Information Age, geopolitics, and global economy, shedding new light on corporate hacking, industrial espionage, counterfeiting and piracy, organized crime and related problems, and a comprehensive guide to developing a world-class defense against these threats. You will learn what you need to know about this dynamic global phenomenon (how it happens, what it costs, how to build an effective program to mitigate risk and how corporate culture determines your success), as well as how to deliver the message to the boardroom and the workforce as a whole. This book serves as an invaluable reservoir of ideas and energy to draw on as you develop a winning security strategy to overcome this formidable challenge.

  • OSSEC Host-Based Intrusion Detection Guide

    • 1st Edition
    • Daniel Cid + 2 more
    • English
    This book is the definitive guide on the OSSEC Host-based Intrusion Detection system and frankly, to really use OSSEC you are going to need a definitive guide. Documentation has been available since the start of the OSSEC project but, due to time constraints, no formal book has been created to outline the various features and functions of the OSSEC product. This has left very important and powerful features of the product undocumented...until now! The book you are holding will show you how to install and configure OSSEC on the operating system of your choice and provide detailed examples to help prevent and mitigate attacks on your systems.-- Stephen Northcutt OSSEC determines if a host has been compromised in this manner by taking the equivalent of a picture of the host machine in its original, unaltered state. This "picture" captures the most relevant information about that machine's configuration. OSSEC saves this "picture" and then constantly compares it to the current state of that machine to identify anything that may have changed from the original configuration. Now, many of these changes are necessary, harmless, and authorized, such as a system administrator installing a new software upgrade, patch, or application. But, then there are the not-so-harmless changes, like the installation of a rootkit, trojan horse, or virus. Differentiating between the harmless and the not-so-harmless changes determines whether the system administrator or security professional is managing a secure, efficient network or a compromised network which might be funneling credit card numbers out to phishing gangs or storing massive amounts of pornography creating significant liability for that organization. Separating the wheat from the chaff is by no means an easy task. Hence the need for this book. The book is co-authored by Daniel Cid, who is the founder and lead developer of the freely available OSSEC host-based IDS. As such, readers can be certain they are reading the most accurate, timely, and insightful information on OSSEC.

  • The ABCs of Learning Disabilities

    • 2nd Edition
    • Bernice Wong + 3 more
    • English
    The ABCs of Learning Disabilities, Second Edition, discusses major research findings on learning disabilities in children, adolescents and adults in language, memory, social skills, self-regulation, reading, mathematics, and writing, with an additional chapter on assessment. This concise primer is intended for use as an undergraduate introductory text to the field. Written with an evenness of tone, breadth, and depth, the conveys an engaging style meant to encourage the beginning student to identify the “big picture” and to be interested in conceptual issues as well as research findings.

  • Nmap in the Enterprise

    Your Guide to Network Scanning
    • 1st Edition
    • Angela Orebaugh + 1 more
    • English
    Nmap, or Network Mapper, is a free, open source tool that is available under the GNU General Public License as published by the Free Software Foundation. It is most often used by network administrators and IT security professionals to scan corporate networks, looking for live hosts, specific services, or specific operating systems. Part of the beauty of Nmap is its ability to create IP packets from scratch and send them out utilizing unique methodologies to perform the above-mentioned types of scans and more. This book provides comprehensive coverage of all Nmap features, including detailed, real-world case studies.

  • No Tech Hacking

    A Guide to Social Engineering, Dumpster Diving, and Shoulder Surfing
    • 1st Edition
    • Johnny Long
    • English
    Johnny Long's last book sold 12,000 units worldwide. Kevin Mitnick's last book sold 40,000 units in North America.As the cliché goes, information is power. In this age of technology, an increasing majority of the world's information is stored electronically. It makes sense then that we rely on high-tech electronic protection systems to guard that information. As professional hackers, Johnny Long and Kevin Mitnick get paid to uncover weaknesses in those systems and exploit them. Whether breaking into buildings or slipping past industrial-grade firewalls, their goal has always been the same: extract the information using any means necessary. After hundreds of jobs, they have discovered the secrets to bypassing every conceivable high-tech security system. This book reveals those secrets; as the title suggests, it has nothing to do with high technology.

  • Retail Crime, Security, and Loss Prevention

    An Encyclopedic Reference
    • 1st Edition
    • Charles A. Sennewald + 1 more
    • English
    Retail Crime, Security, and Loss Prevention is destined to become the "go to" source of crime- and loss prevention- related information in the retail industry. Written and edited by two nationally recognized retail security experts and enhanced with 63 contributions by others who contribute expertise in specialized areas, this book provides over 150 definitions of loss prevention terms, and discusses topics ranging from accident investigations, counterfeit currency, emergency planning, and workplace violence to vendor frauds. No other single work contains such a wealth of retail security information. The co-authors are Charles “Chuck” Sennewald, CSC, CPP former Director of Security at The Broadway Department Stores, a major division of Carter Hawley Hale Stores, Inc., founder of the IAPSC and author of numerous security industry books, and John Christman, CPP, former VP and Director of Security for Macy's West. They have put in one book a wealth of information, techniques, procedures and source material relative to retail crime and loss prevention which will prove an invaluable reference work for professionals at all levels within the industry.

  • Microsoft Forefront Security Administration Guide

    • 1st Edition
    • Jesse Varsalone
    • English
    Microsoft Forefront is a comprehensive suite of security products that will provide companies with multiple layers of defense against threats. Computer and Network Security is a paramount issue for companies in the global marketplace. Businesses can no longer afford for their systems to go down because of viruses, malware, bugs, trojans, or other attacks. Running a Microsoft Forefront Suite within your environment brings many different benefits. Forefront allows you to achieve comprehensive, integrated, and simplified infrastructure security. This comprehensive suite of tools provides end-to-end security stretching from Web servers back to the desktop. This book will provide system administrators familiar with Syngress' existing Microsoft networking and security titles with a complete reference to Microsoft's flagship security products.

  • Scientific Libraries

    Past Developments and Future Changes
    • 1st Edition
    • Tomas Lidman
    • English
    Scientific libraries have undergone dramatic changes since the end of the 1960s. This book explains and characterises these changes and main trends, and describes their consequences for libraries. The book presents an overview and an analysis of long-term developments in the field. Professionals within library and information sciences, together with students, will find the book of interest, enabling them to understand the situation of the libraries today and also prepare them for decisions about the future.

  • Knowledge Management for Services, Operations and Manufacturing

    • 1st Edition
    • Tom Young
    • English
    This book is aimed at those who are involved in Knowledge Management (KM) or have recently been appointed to deliver KM in services, operational or production environments. The models and techniques for KM are well defined within environments with a distinct start and finish to the activity, for example the learn before, during and after model. Knowledge Management for Services, Operations and Manufacturing focuses on environments where activity and learning are on going, and a different approach to KM has to be taken. The book provides managers and practitioners with the necessary principles, approaches and tools to be able to design their approach from scratch or to be able to compare their existing practices against world class examples. Models and methodologies which can be applied or replicated in a wide variety of industries are examined and numerous case studies illustrate the journey that various companies are taking as they implement KM.

  • Developing Open Access Journals

    A Practical Guide
    • 1st Edition
    • David Solomon
    • English
    This book provides a practical guide to developing and maintaining an electronic open access peer-reviewed scholarly journal. Creating such journals, particularly if it is done well, requires a great deal of specialized knowledge that spans library science, web development, intellectual property rights and publishing, as well as well issues that are unique to the activity itself. The book provides a very practical step by step guide to addressing the issues of creating an open access journal.

  • Presentations for Librarians

    A Complete Guide to Creating Effective, Learner-Centred Presentations
    • 1st Edition
    • Lee Hilyer
    • English
    Recent research on learning from multimedia presentations has indicated that the current way many people prepare their slide presentations may actually hinder learning. Considering the ubiquity of the PowerPoint presentation in business and in education, presenters should be concerned whether or not their audience members are effectively receiving the information they wish to impart. This issue is of special import for librarians who teach, as they often must convey complex information in a very limited amount of time. Combining the best evidence on multimedia learning with real-world practical guidelines, this book aims to provide novice and expert presenters alike with the tools they need to ensure an effective, learner-centred presentation.

  • Management Education in Japan

    • 1st Edition
    • Norio Kambayashi + 2 more
    • English
    The changing nature of education and training systems in Japanese firms is reviewed with focus on developments of management education in Japanese universities. Based on a contextual model, this book examines whether the MBA education system in the Japanese business schools is useful for human resource development in Japanese firms and discusses the importance of developments of Japanese-specific methods of management education.

  • A Litigator's Guide to DNA

    From the Laboratory to the Courtroom
    • 1st Edition
    • Ron C. Michaelis + 2 more
    • English
    A Litigator's Guide to DNA educates both criminal law students and forensic science students about all aspects of the use of DNA evidence in criminal and civil trials. It includes discussions of the molecular biological basis for the tests, essential laboratory practices, probability theory and mathematical calculations, and issues relevant to the prosecution and the defense, and to the judge and jury hearing the case. The authors provide a full background on both the molecular biology and the mathematical theory behind forensic tests, describing the molecular biological process in simple mechanical terms that are familiar to everyone, and periodically emphasizing the practical, take-home messages the student truly needs to understand. Pedagogical elements such as Recapping the Main Point boxes and valuable ancillary material (Instructors' Manual, PowerPoint slides) make this an ideal text for professors.

  • Coping with Continuous Change in the Business Environment

    Knowledge Management and Knowledge Management Technology
    • 1st Edition
    • Antonie Botha + 2 more
    • English
    Aimed at knowledge management professionals and students in the field of knowledge management, information science, information systems and software engineering, the book provides answers to the ‘what-is’ and ‘why-is’ questions with regard to knowledge management. It investigates the concepts and elements, the drivers, and challenges involved in knowledge management. In the second part of the book the ‘how’ and ‘with-what’ characteristics of knowledge management are covered. Although knowledge management is primarily concerned with non-technical issues, this book concentrates on the technical issues and challenges. A new technology framework for knowledge management is proposed to position and relate the different knowledge management technologies as well as the two key applications of knowledge management, namely knowledge portals and knowledge discovery (including text mining).

  • How to Cheat at Administering Office Communications Server 2007

    • 1st Edition
    • Anthony Piltzecker
    • English
    Microsoft Office Communications Server (OCS) 2007 is Microsoft’s latest version of Live Communications Server 2005. The product provides management for all synchronous communications that takes place in real time. This includes instant messaging (IM), Voice over IP (VoIP), and audio conferencing and videoconferencing. It will work with your company’s existing telecommunications systems without major hardware upgrades. This means your business can deploy advanced VoIP and conferencing without tearing out its preexisting legacy telephone network.How to Cheat at Administering Microsoft Office Communicator 2007 provides the busy system administrator with any easy-to-access reference that provides step-by-step instructions on how to install, configure, manage and troubleshoot Communicator across the network. It is the perfect tool for those who simply need to complete a task without reading through lots of theory and principles.

  • The Analysis of Burned Human Remains

    • 1st Edition
    • Christopher W. Schmidt + 1 more
    • English
    This unique reference provides a primary source for osteologists and the medical/legal community for the understanding of burned bone remains in forensic or archaeological contexts. It describes in detail the changes in human bone and soft tissues as a body burns at both the chemical and gross levels and provides an overview of the current procedures in burned bone study. Case studies in forensic and archaeological settings aid those interested in the analysis of burned human bodies, from death scene investigators, to biological anthropologists looking at the recent or ancient dead.

  • The Best Damn Exchange, SQL and IIS Book Period

    • 1st Edition
    • Henrik Walther + 2 more
    • English
    Exchange, SQL and IIS are at the core of most Microsoft enterprise servers. The 2007 releases of these products, along with the release of Windows Vista and Windows 2008 Server, represents the biggest overhaul of Windows enterprise products since Windows 2000. The dramatic changes to security tools and the addition of features that support "anywhere access" present IT professionals with a steep learning curve. Making certain that these products are configured to meet regulatory compliance requirements adds addtionaly complexity to day-to-day management network management. The Best Damn Exchange, SQL and IIS Book Period delivers an all-in-one reference for Windows System Administrators deploying the 2007 releases of these core Microsoft servers. The coverage is comprehensive, and provides users with just about everything they need to manage a Windows enterprise server. Special Bonus coverage includes how to gather and analyze the many log files generated by these servers.

  • The Best Damn Firewall Book Period

    • 2nd Edition
    • Thomas W Shinder
    • English
    The Second Edition of the Best Damn Firewall Book Period is completely revised and updated to include all of the most recent releases from Microsoft, Cisco, Juniper Network, and Check Point.Compiled from the best of the Syngress firewall library and authored by product experts such as Dr. Tom Shinder on ISA Server, this volume is an indispensable addition to a serious networking professionals toolkit. Coverage includes migrating to ISA Server 2006, integrating Windows Firewall and Vista security into your enterprise, successfully integrating Voice over IP applications around firewalls, and analyzing security log files.Sections are organized by major vendor, and include hardware, software and VPN configurations for each product line.

  • How to Cheat at Configuring VmWare ESX Server

    • 1st Edition
    • David Rule
    • English
    A virtual evolution in IT shops large and small has begun. VMware’s ESX Server is the enterprise tool to free your infrastructure from its physical limitations providing the great transformation into a virtual environment--this book shows you how. Use Syngress’ proven “How to Cheat” methodology to configure and build VMware’s ESX Server version 3. This clear, concise guide provides all the information you need to become a virtual whiz!This book will detail the default and custom installation of VMware’s ESX server as well as basic and advanced virtual machine configurations. It will then walk the reader through post installation configurations including installation and configuration of VirtualCenter. From here, readers will learn to efficiently create and deploy virtual machine templates. Best practices for securing and backing up your virtual environment are also provided. The book concludes with a series of handy, time-saving command and configuration for: bash shell keystrokes, Linux commands, configuration files, common/proc files, VMware ESX commands, and troubleshooting.

  • How to Cheat at Deploying and Securing RFID

    • 1st Edition
    • Frank Thornton + 1 more
    • English
    RFID is a method of remotely storing and receiving data using devices called RFID tags. RFID tags can be small adhesive stickers containing antennas that receive and respond to transmissions from RFID transmitters. RFID tags are used to identify and track everything from Exxon EZ pass to dogs to beer kegs to library books. Major companies and countries around the world are adopting or considering whether to adopt RFID technologies. Visa and Wells Fargo are currently running tests with RFID, airports around the world are using RFID to track cargo and run customs departments, universities such as Slippery Rock are providing RFID-enabled cell phones for students to use for campus charges. According to the July 9 CNET article, RFID Tags: Big Brother in Small Packages?, "You should become familiar with RFID technology because you'll be hearing much more about it soon. Retailers adore the concept, and CNET News.com's own Alorie Gilbert wrote last week about how Wal-Mart and the U.K.-based grocery chain Tesco are starting to install "smart shelves" with networked RFID readers. In what will become the largest test of the technology, consumer goods giant Gillette recently said it would purchase 500 million RFID tags from Alien Technology of Morgan Hill, CA." For security professionals needing to get up and running fast with the topic of RFID, this How to Cheat approach to the topic is the perfect "just what you need to know" book!

  • Open Source Fuzzing Tools

    • 1st Edition
    • Noam Rathaus + 1 more
    • English
    Fuzzing is often described as a “black box” software testing technique. It works by automatically feeding a program multiple input iterations in an attempt to trigger an internal error indicative of a bug, and potentially crash it. Such program errors and crashes are indicative of the existence of a security vulnerability, which can later be researched and fixed.Fuzz testing is now making a transition from a hacker-grown tool to a commercial-grade product. There are many different types of applications that can be fuzzed, many different ways they can be fuzzed, and a variety of different problems that can be uncovered. There are also problems that arise during fuzzing; when is enough enough? These issues and many others are fully explored.

  • Maritime Security

    An Introduction
    • 1st Edition
    • Michael McNicholas
    • English
    The commercial maritime sector is highly vulnerable to theft and piracy, and presents a probable target for a major terrorist attack. The best way to prevent losses is to apply lessons learned in another arena-–the struggle to curb drug smuggling. This effort has shown that successes can be achieved when effective and comprehensive security measures and procedures are implemented at key initial links in the cargo supply chain. The integrity and security of whole system are improved when efforts are focused at the primary "choke point" – the load seaports and their ships. This book provides practical, experience-based, and proven knowledge - and a "how-to-guide" - on maritime security. McNicholas explains in clear language how commercial seaports and vessels function; what threats currently exist; what security policies, procedures, systems, and measures must be implemented to mitigate these threats; and how to conduct ship and port security assessments and plans. Whether the problem is weapons of mass destruction or cargo theft, Maritime Security provides invaluable guidance for the professionals who protect our shipping and ports.

  • The Best Damn IT Security Management Book Period

    • 1st Edition
    • Susan Snedaker + 1 more
    • English
    The security field evolves rapidly becoming broader and more complex each year. The common thread tying the field together is the discipline of management. The Best Damn Security Manager's Handbook Period has comprehensive coverage of all management issues facing IT and security professionals and is an ideal resource for those dealing with a changing daily workload.Coverage includes Business Continuity, Disaster Recovery, Risk Assessment, Protection Assets, Project Management, Security Operations, and Security Management, and Security Design & Integration.Compiled from the best of the Syngress and Butterworth Heinemann libraries and authored by business continuity expert Susan Snedaker, this volume is an indispensable addition to a serious security professional's toolkit.

  • Web Application Vulnerabilities

    Detect, Exploit, Prevent
    • 1st Edition
    • Steven Palmer
    • English
    In this book, we aim to describe how to make a computer bend to your will by finding and exploiting vulnerabilities specifically in Web applications. We will describe common security issues in Web applications, tell you how to find them, describe how to exploit them, and then tell you how to fix them. We will also cover how and why some hackers (the bad guys) will try to exploit these vulnerabilities to achieve their own end. We will also try to explain how to detect if hackers are actively trying to exploit vulnerabilities in your own Web applications.

Related subjects