Open Source Network Security Tools for Beginners

With so many open source tools available to help with network security, it can be tricky to figure out where to start, especially if you are an IT generalist who has been tasked with security.

In this white paper, we'll provide an overview of some of our favorite open source tools as well as tips on how to use them for network security.

You'll learn about using open source tools for:

  • Network discovery
  • Network IDS
  • Vulnerability scanning
  • Penetration testing

Download your copy today and learn how to get started with open source network security tools.

Get Whitepaper

Beginner’s Guide to Open Source Intrusion Detection Tools

This whitepaper provides an overview of Open Source IDS and the various IDS tools available today. Whether you need to monitor hosts or the networks connecting them to identify the latest threats, these are some of the best open source intrusion detection (IDS) tools available to you.

You'll learn:

  • The functions of network & host-based IDS, and file integrity monitoring
  • A list of the most popular Open Source IDS tools
  • Pros and cons of the various tools available today
Get Whitepaper

Detecting “WannaCry” Ransomware with AlienVault USM

“WannaCry” ransomware has hit tens of thousands of networks, bringing down hospital services, telecommunication services, financial institutions, and more.

In this free white paper, you'll learn:

  • How WannaCry infects systems
  • What you should update immediately
  • How to scan your environment for the MS17-010 vulnerability
  • How to continuously monitor your environment for intrusions and indicators of an exploit

Download this white paper now to learn how you can start using AlienVault USM to detect threats like WannaCry ransomware today.

Get Whitepaper

Who Needs Malware? How Adversaries Use Fileless Attacks To Evade Your Security

Learn how fileless techniques work and why they present such a complex challenge.

Adversaries are increasingly using fileless attacks that leverage trusted systems and processes to bypass standard security. The arms race between cybersecurity vendors and determined adversaries has never been more heated. As soon as a new security tool is released, threat actors strive to develop a way around it. One advanced threat technique that is experiencing success is the use of fileless attacks, where no executable file is written to disk.

The 2017 Verizon Data Breach Investigations Report found that 51 percent of cyberattacks are malware-free, so there’s no indication that these attacks will be subsiding anytime soon. Read this white paper to get the important information you need to successfully defend your company against stealthy fileless attacks.

Download this white paper to learn:

  • The detailed anatomy of a fileless intrusion, including the initial compromise, gaining command and control, escalating privileges and establishing persistence
  • How fileless attacks exploit trusted systems — the types of processes compromised, the specific exploit tactics used to gain a foothold, and more
  • Why traditional technologies fail to protect against fileless attacks and what you can do to better defend your organization against them
Get Whitepaper

Stop Blaming China & Russia for All Your Cyber Attacks

Despite dramatic media coverage, most breaches in cyber security are not caused by nation-state attacks carried out by sophisticated hackers. Far too often businesses try to save face by blaming attacks on state actors when they have failed to make proper cybersecurity investments that leave them vulnerable to amateur hackers.

Authored by Amar Singh, CEO of the Cyber Management Alliance, this white paper helps to debunk some of the myths and misconceptions surrounding why most cyberattacks succeed. Plus, it offers recommendations on what companies can do to deny and disrupt threats from outside attackers and malicious insiders.

Get Whitepaper

The 9 Signs That Your Endpoint Security Isn’t Working Well

Is your endpoint security solution providing all the protection you need? Download this tech brief from ESET and see what nine warning signs you should look out for.

For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint and mobile security, to encryption and two-factor authentication, ESET's high-performing, easy-to-use products give consumers and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real-time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D centers worldwide, ESET becomes the first IT security company to earn 100 Virus Bulletiin VB100 awards., identifying every single "in-the-wild" malware without interruption since 2003. For more information visit www.eset.com or follow us on LinkedIn, Facebook, and Twitter.

Get Whitepaper

Trends 2017: Security held ransom

For several years, the research team at ESET has been issuing its Trends report, which provides a review of the latest and most significant developments in information security, and presents the key topics of relevance for businesses and users for the upcoming year. Download this white paper from ESET to learn about what's on the horizon as far as security goes, to ensure that you will be better prepared to tackle the associated challenges ahead.

For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint and mobile security, to encryption and two-factor authentication, ESET's high-performing, easy-to-use products give consumers and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real-time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D centers worldwide, ESET becomes the first IT security company to earn 100 Virus Bulletiin VB100 awards., identifying every single "in-the-wild" malware without interruption since 2003. For more information visit www.eset.com or follow us on LinkedIn, Facebook, and Twitter.

Get Whitepaper

The 3 Causes of Data Breaches — and How to Prevent Them

Security breaches have become a weekly occurrence in the news cycle, which has caused businesses to start asking questions. How are they happening? Is my business at risk? The short answer is yes, your business is at risk. Download a tech brief from ESET on how data breaches occur, why they're on the rise, and what steps to take now to protect your business.

For 30 years, ESET® has been developing industry-leading IT security software and services for businesses and consumers worldwide. With solutions ranging from endpoint and mobile security, to encryption and two-factor authentication, ESET's high-performing, easy-to-use products give consumers and businesses the peace of mind to enjoy the full potential of their technology. ESET unobtrusively protects and monitors 24/7, updating defenses in real-time to keep users safe and businesses running without interruption. Evolving threats require an evolving IT security company. Backed by R&D centers worldwide, ESET becomes the first IT security company to earn 100 Virus Bulletiin VB100 awards., identifying every single "in-the-wild" malware without interruption since 2003. For more information visit www.eset.com or follow us on LinkedIn, Facebook, and Twitter.

Get Whitepaper

The Digital Risk Management Maturity Model

How mature is your organization's digital risk management program?

For many organizations, multichannel access to information, including web, mobile and social channels, presents new digital threats that are often overlooked. Join senior security analyst Nick Hayes of Forrester Research, co-author of The Forrester Wave™: Digital Risk Monitoring, to discuss digital risk monitoring and management.

Watch this webinar presented by Slashdot Media and sponsored by RiskIQ to learn how to gain visibility into, detect, and respond to digital threats of all kinds. We will discuss:

  • How digital risk threatens your organization
  • The Digital Risk Maturity Model
  • The requisite processes and resources necessary to formalize and fine-tune digital risk management
  • Where to prioritize your investment in digital risk for maximum impact

Watch the webinar and take your first steps towards further reducing digital threats.

About the Presenters:
Nick Hayes is a Senior Analyst at Forrester Research. His research is dedicated to helping risk professionals and other business leaders understand and manage customer-facing risks in order to build more resilient brands. He has extensive knowledge of the security, privacy, archiving, and other compliance challenges of social media, as well as the technical controls used to address them.

Sam Curcuruto is the senior product marketing manager at RiskIQ, where he's responsible for spending time with security professionals to understand their problems and find innovative ways that RiskIQ technology can help solve them. Sam's experience spans tech companies focused on cybersecurity, cyber infrastructure management, and consumer software.

View Now

Using Internet Data Sets to Understand Digital Threats

As businesses adapt to the rapidly changing digital landscape, more customer and business operations are shifting from behind the protection of firewalls to the open internet. This new level of exposure makes your company, customers, and prospects vulnerable to the extremely skilled persistent threats across the web, mobile, social, and email.

Fortunately, Internet data can be sorted, classified, and monitored over time to create highly connected data sets that provide a complete picture of your attackers and their evolving techniques. Security professionals must leverage the relationships between these data sets to surface new connections, group similar attack activity, and substantiate assumptions during incident response.

In this white paper, we’ll explore the technique of infrastructure chaining, and explore the data sets available to security professionals such as:

  • Passive DNS
  • WHOIS
  • SSL Certificates
  • Analytical Trackers
  • Host Sequence Pairs
  • Web Components
  • Open Source Intelligence (OSINT)
Get Whitepaper

Appsession: Is our Appetite for Mobile Apps Putting us at Risk? Infographic

With the explosion of mobile app usage, more personal information than ever is flowing through mobile applications. But has our security awareness kept pace? Have consumers adopted best practice behaviors or are they leaving themselves vulnerable to cyber attack?

Download the infographic for a breakdown of the new mobile safety landscape, including how often:

  • Users tclick on ads promoting apps
  • Users click on links in emails, mobile web, and social media promoting apps
  • Users rarely or never check the app details before downloading
  • Users rarely or never inspect the T&C’s or permissions being requested during app installation
View Now

Appsession: Is our Appetite for Mobile Apps Putting us at Risk?

A RiskIQ Mobile Consumer Report

With so much of our personal information now flowing through mobile applications, has our security awareness kept pace? Have consumers adopted best practice behaviors or are they leaving themselves vulnerable to cyber attack?

To better understand consumer behavior, RiskIQ commissioned Ginger Comms to survey 1,000 US and 1,000 UK consumers aged 16 to 60+, specifically focusing on smartphone apps. The survey was conducted during February and March 2017.

The top line results show that over half of all respondents regularly display behaviors that put themselves at risk. Download the report to find out:

  • The percentage of users that click on ads promoting apps
  • The percentage of users that click on links in emails, mobile web, and social media promoting apps
  • The percentage of users that rarely or never inspect the T&C’s or permissions being requested during app installation
  • The percentage of users that reuse passwords across mobile apps
Get Whitepaper

The Rise of Machine Learning in Cybersecurity

All ML technology isn’t created equal. Learn how the CrowdStrike® ML-based Engine Defends Against Unknown Malware. While many organizations are guarding the front door with yesterday’s signature-based antivirus (AV) solutions, today’s unknown malware walks out the back door with all their data. What’s the answer?

A new white paper, “The Rise of Machine Learning in Cybersecurity,” explains machine learning (ML) technology — what it is, how it works and why it offers better protection against the sophisticated attacks that bypass standard security measures. You’ll also learn about CrowdStrike’s exclusive ML technology and how, as part of the Falcon platform’s next-gen AV solution, it dramatically increases your ability to detect attacks that use unknown malwar

Download this white paper to learn:

  • How different types of ML are applied in various industries and why it’s such an effective tool against unknown malware
  • Why ML technologies differ and what factors can increase the accuracy and effectiveness of ML
  • How CrowdStrike’s ML-based technology works as part of the Falcon platform’s next-generation AV, and why it offers superior protection over other AV solution
Get Whitepaper

Privileged Password Security Policy Template

With privileged account credentials a favorite target of hackers, it’s critical that you have password protection policies in place to prevent unauthorized access and demonstrate security compliance. Thycotic and Information Shield make it easy for you.

This free Privileged Password Security Policy Template gives you best-practice policies to help your organization improve IT security and demonstrate regulatory compliance. You’ll save hours of effort leveraging these policies that are easily customizable in a matter of minutes.

  • Downloaded as an editable, easily customized Microsoft Word document
  • Developed according to best practice standards from SANS, NIST, GLBA, ISO17799, ISO9000 and more
  • Details how policies can be enforced with Thycotic Secret Server
Get Whitepaper