Chapter 2 Intrusion Methodologies and Artifacts

In this chapter we will explore the five stages of an intrusion. During each stage you will learn different techniques that an attacker may use. You will also see examples of the various pieces of evidence and where they may be left behind. We will walk through a very simple example of an intrusion from step 1 right through step 5. In the remainder of the chapters we will then walk through the process of investigating the intrusion. You are encouraged to download the tools used and follow along, have fun and learn. You are also encouraged to continue to explore and learn about the many other tools available.

Stage 1: Pre-Intrusion Actions: AKA Reconnaissance

This stage involves gathering as much information ...

Get Network Intrusion Analysis now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Network Intrusion Analysis by Joe Fichera, Steven Bolt

Chapter 2

Intrusion Methodologies and Artifacts

Stage 1: Pre-Intrusion Actions: AKA Reconnaissance

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly