{"product_id":"cyberjutsu-cybersecurity-for-the-modern-ninja-9781718500549","title":"Cyberjutsu: Cybersecurity for the Modern Ninja","description":"\u003cb\u003eLike Sun Tzu's Art of War for Modern Business, this book uses ancient ninja scrolls as the foundation for teaching readers about cyber-warfare, espionage and security.\u003c\/b\u003e \u003cp\u003e\u003c\/p\u003e\u003ci\u003eCyberjutsu\u003c\/i\u003e presents a practical cybersecurity field guide based on the techniques, tactics, and procedures (TTPs) of the ancient ninja. Author Ben McCarty, a cyber warfare specialist and former NSA developer, analyzes once-secret Japanese scrolls, drawing parallels to modern infosec concepts to provide unique insights on defensive and offensive security. He translates the training methodologies of Japan's most notorious covert agents--history's first advanced persistent threat (APT)--into highly effective practices for countering information warfare, espionage, supply-chain attacks, zero-day exploits, and more. \u003cp\u003e\u003c\/p\u003eEach chapter examines one TTP in detail--like assessing gaps in a target's defense, striking where the enemy is negligent, and mastering the art of invisibility--and explains what the concept can teach us about the current cybersecurity landscape. McCarty recommends in-depth mitigations and security controls, mapped to the NIST 800-53 standard, and a \"Castle Theory Thought Exercise\" that helps you apply the ancient lesson to protect your castle (network) from enemy ninja (cyber threat actors). You'll discover the effectiveness of ancient social engineering strategies and trap-based security controls; see why mapping your network like an adversary gives you the advantage; and apply lessons from old-world tools, like the \"ninja ladder,\" to prevent attacks. \u003cp\u003e\u003c\/p\u003eTopics also include: \u003cbr\u003e \u003cb\u003e-\u003c\/b\u003e Threat modeling, threat intelligence, and targeted controls\u003cbr\u003e \u003cb\u003e-\u003c\/b\u003e Countermeasures like network sensors, time-based controls, airgaps, and improved authentication protocols\u003cbr\u003e \u003cb\u003e-\u003c\/b\u003e Profiles of insider threats, and ways to recognize them in employees\u003cbr\u003e \u003cb\u003e-\u003c\/b\u003e Covert communication TTPs and their implications for malware command and control (C2)\u003cbr\u003e \u003cb\u003e-\u003c\/b\u003e Methods for detecting attackers, preventing supply-chain attacks, and defending against zero-day exploits \u003cp\u003e\u003c\/p\u003eIn this book, you'll see the astonishing power of ninja information-gathering processes--and how adopting them just might be the key to innovating contemporary cybersecurity models.\u003cbr\u003e\u003cbr\u003e\u003cbr\u003e\u003cb\u003eBinding Type:\u003c\/b\u003e Paperback\u003cbr\u003e\u003cb\u003ePublisher:\u003c\/b\u003e No Starch Press\u003cbr\u003e\u003cb\u003ePublished:\u003c\/b\u003e 04\/27\/2021\u003cbr\u003e\u003cb\u003eISBN:\u003c\/b\u003e 9781718500549\u003cbr\u003e\u003cb\u003ePages:\u003c\/b\u003e 264","brand":"Ben McCarty","offers":[{"title":"Default Title","offer_id":39580022407349,"sku":"9781718500549","price":25.49,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0473\/0804\/6492\/products\/img_5e4f72fa-78f7-44e0-8840-b137d30c1ae4.jpg?v=1617084015","url":"https:\/\/pastforward.org\/products\/cyberjutsu-cybersecurity-for-the-modern-ninja-9781718500549","provider":"Past Forward","version":"1.0","type":"link"}