{"product_id":"the-active-defender-9781119895213","title":"The Active Defender","description":"\u003cb\u003eBook Synopsis\u003c\/b\u003e\u003cbr\u003eImmerse yourself in the offensive security mindset to better defend against attacks In The Active Defender: Immersion in the Offensive Security Mindset, Principal Technology Architect, Security, Dr. Catherine J. Ullman delivers an expert treatment of the Active Defender approach to information security. In the book, you'll learn to understand and embrace the knowledge you can gain from the offensive security community. You'll become familiar with the hacker mindset, which allows you to gain emergent insight into how attackers operate and better grasp the nature of the risks and threats in your environment.    The author immerses you in the hacker mindset and the offensive security culture to better prepare you to defend against threats of all kinds. You'll also find: Explanations of what an Active Defender is and how that differs from traditional defense modelsReasons why thinking like a hacker makes you a better defenderWays to begin your journey as an Active Defender and leverage the hacker mindset An insightful and original book representing a new and effective approach to cybersecurity, The Active Defender will be of significant benefit to information security professionals, system administrators, network administrators, and other tech professionals with an interest or stake in their organization's information security.\u003cbr\u003e\u003cbr\u003e\u003cb\u003eTable of Contents\u003c\/b\u003e\u003cbr\u003e\u003cp\u003eForeword xxv\u003c\/p\u003e \u003cp\u003ePreface xxix\u003c\/p\u003e \u003cp\u003eIntroduction xxxiii\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1 What Is an Active Defender? 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Hacker Mindset 1\u003c\/p\u003e \u003cp\u003eTraditional Defender Mindset 3\u003c\/p\u003e \u003cp\u003eGetting from Here to There 4\u003c\/p\u003e \u003cp\u003eActive Defender Activities 7\u003c\/p\u003e \u003cp\u003eThreat Modeling 7\u003c\/p\u003e \u003cp\u003eThreat Hunting 8\u003c\/p\u003e \u003cp\u003eAttack Simulations 9\u003c\/p\u003e \u003cp\u003eActive Defense 9\u003c\/p\u003e \u003cp\u003e“Active Defense” for the Active Defender 10\u003c\/p\u003e \u003cp\u003eAnother Take on Active Defense 10\u003c\/p\u003e \u003cp\u003eAnnoyance 11\u003c\/p\u003e \u003cp\u003eAttribution 11\u003c\/p\u003e \u003cp\u003eAttack 11\u003c\/p\u003e \u003cp\u003eActive Defense According to Security Vendors 11\u003c\/p\u003e \u003cp\u003eActive \u0026gt; Passive 12\u003c\/p\u003e \u003cp\u003eActive Defense by the Numbers 13\u003c\/p\u003e \u003cp\u003eActive Defense and Staffing 13\u003c\/p\u003e \u003cp\u003eActive Defender \u0026gt; Passive Defender 13\u003c\/p\u003e \u003cp\u003eRelevant Intel Recognition 13\u003c\/p\u003e \u003cp\u003eUnderstanding Existing Threats 14\u003c\/p\u003e \u003cp\u003eAttacker Behavior 14\u003c\/p\u003e \u003cp\u003ePyramid of Pain 15\u003c\/p\u003e \u003cp\u003eMITRE Att\u0026amp;ck 15\u003c\/p\u003e \u003cp\u003eTTP Pyramid 15\u003c\/p\u003e \u003cp\u003eToward a Deeper Understanding 16\u003c\/p\u003e \u003cp\u003eReturn to the Beginning 16\u003c\/p\u003e \u003cp\u003eSummary 18\u003c\/p\u003e \u003cp\u003eNotes 18\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2 Immersion into the Hacker Mindset 21\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eReluctance 21\u003c\/p\u003e \u003cp\u003eMedia Portrayal 21\u003c\/p\u003e \u003cp\u003eFear of Government Retribution 22\u003c\/p\u003e \u003cp\u003eThe Rock Star Myth 22\u003c\/p\u003e \u003cp\u003eImposter Syndrome 23\u003c\/p\u003e \u003cp\u003eA Leap of Faith 23\u003c\/p\u003e \u003cp\u003eMy First Security BSides 24\u003c\/p\u003e \u003cp\u003eMy First DEF CON 24\u003c\/p\u003e \u003cp\u003eFinding the Community 27\u003c\/p\u003e \u003cp\u003eSecurity BSides 27\u003c\/p\u003e \u003cp\u003eStructured Format 27\u003c\/p\u003e \u003cp\u003eUnconference Format 28\u003c\/p\u003e \u003cp\u003eHybrid Format 28\u003c\/p\u003e \u003cp\u003eAdditional Events 28\u003c\/p\u003e \u003cp\u003eOther Security Conferences 29\u003c\/p\u003e \u003cp\u003eCircleCityCon 29\u003c\/p\u003e \u003cp\u003eGrrCON 29\u003c\/p\u003e \u003cp\u003eThotcon 29\u003c\/p\u003e \u003cp\u003eShmooCon 30\u003c\/p\u003e \u003cp\u003eWild West Hackin’ Fest 30\u003c\/p\u003e \u003cp\u003eDEF Con 30\u003c\/p\u003e \u003cp\u003eLocal Security Meetups 30\u003c\/p\u003e \u003cp\u003eInfosec 716 31\u003c\/p\u003e \u003cp\u003eBurbsec 31\u003c\/p\u003e \u003cp\u003e#misec 31\u003c\/p\u003e \u003cp\u003eMakerspaces 31\u003c\/p\u003e \u003cp\u003eDEF CON Groups 32\u003c\/p\u003e \u003cp\u003e2600 Meetings 32\u003c\/p\u003e \u003cp\u003eOnline Security Communities 33\u003c\/p\u003e \u003cp\u003eTraditional Security Communities 34\u003c\/p\u003e \u003cp\u003eAn Invitation 34\u003c\/p\u003e \u003cp\u003eSummary 36\u003c\/p\u003e \u003cp\u003eNotes 36\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3 Offensive Security Engagements, Trainings, and Gathering Intel 37\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eOffensive Security Engagements 37\u003c\/p\u003e \u003cp\u003eTargeting 38\u003c\/p\u003e \u003cp\u003eInitial Access 38\u003c\/p\u003e \u003cp\u003ePersistence 39\u003c\/p\u003e \u003cp\u003eExpansion 39\u003c\/p\u003e \u003cp\u003eExfiltration 40\u003c\/p\u003e \u003cp\u003eDetection 40\u003c\/p\u003e \u003cp\u003eOffensive Security Trainings 40\u003c\/p\u003e \u003cp\u003eConference Trainings 41\u003c\/p\u003e \u003cp\u003eSecurity BSides 41\u003c\/p\u003e \u003cp\u003eDEF Con 42\u003c\/p\u003e \u003cp\u003eGrrCON 42\u003c\/p\u003e \u003cp\u003eThotcon 43\u003c\/p\u003e \u003cp\u003eCircleCityCon 43\u003c\/p\u003e \u003cp\u003eWild West Hackin’ Fest 43\u003c\/p\u003e \u003cp\u003eBlack Hat 44\u003c\/p\u003e \u003cp\u003eSecurity Companies 44\u003c\/p\u003e \u003cp\u003eOffensive Security 44\u003c\/p\u003e \u003cp\u003eTrustedSec 44\u003c\/p\u003e \u003cp\u003eAntisyphon 45\u003c\/p\u003e \u003cp\u003eSANS 45\u003c\/p\u003e \u003cp\u003eOnline Options 46\u003c\/p\u003e \u003cp\u003eHackthebox 46\u003c\/p\u003e \u003cp\u003eTryhackme 46\u003c\/p\u003e \u003cp\u003eHackthissite 47\u003c\/p\u003e \u003cp\u003eCTFs 47\u003c\/p\u003e \u003cp\u003eYouTube 47\u003c\/p\u003e \u003cp\u003eHigher Education 48\u003c\/p\u003e \u003cp\u003eGathering Intel 48\u003c\/p\u003e \u003cp\u003eTradecraft Intel 49\u003c\/p\u003e \u003cp\u003eProject Zero 49\u003c\/p\u003e \u003cp\u003eAttackerKB 49\u003c\/p\u003e \u003cp\u003eDiscord\/Slack 50\u003c\/p\u003e \u003cp\u003eTwitter 50\u003c\/p\u003e \u003cp\u003eOrganizational Intel 51\u003c\/p\u003e \u003cp\u003eLinkedIn 51\u003c\/p\u003e \u003cp\u003ePastebin 52\u003c\/p\u003e \u003cp\u003eGitHub 52\u003c\/p\u003e \u003cp\u003eMessage Boards 52\u003c\/p\u003e \u003cp\u003eInternal Wikis 53\u003c\/p\u003e \u003cp\u003eHaveibeenpwned 53\u003c\/p\u003e \u003cp\u003eSummary 54\u003c\/p\u003e \u003cp\u003eNotes 54\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4 Understanding the Offensive Toolset 55\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eNmap\/Zenmap 57\u003c\/p\u003e \u003cp\u003eBurp Suite\/ZAP 59\u003c\/p\u003e \u003cp\u003esqlmap 60\u003c\/p\u003e \u003cp\u003eWireshark 61\u003c\/p\u003e \u003cp\u003eMetasploit Framework 63\u003c\/p\u003e \u003cp\u003eShodan 64\u003c\/p\u003e \u003cp\u003eSocial-Engineer Toolkit 66\u003c\/p\u003e \u003cp\u003eMimikatz 67\u003c\/p\u003e \u003cp\u003eResponder 70\u003c\/p\u003e \u003cp\u003eCobalt Strike 71\u003c\/p\u003e \u003cp\u003eImpacket 73\u003c\/p\u003e \u003cp\u003eMitm6 75\u003c\/p\u003e \u003cp\u003eCrackMapExec 76\u003c\/p\u003e \u003cp\u003eevil-winrm 77\u003c\/p\u003e \u003cp\u003eBloodHound\/SharpHound 78\u003c\/p\u003e \u003cp\u003eSummary 79\u003c\/p\u003e \u003cp\u003eNotes 80\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5 Implementing Defense While Thinking Like a Hacker 81\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eOSINT for Organizations 81\u003c\/p\u003e \u003cp\u003eOPSEC 82\u003c\/p\u003e \u003cp\u003eOSINT 82\u003c\/p\u003e \u003cp\u003eSocial Engineering 82\u003c\/p\u003e \u003cp\u003eActively Defending 84\u003c\/p\u003e \u003cp\u003eASM 84\u003c\/p\u003e \u003cp\u003eATO Prevention 84\u003c\/p\u003e \u003cp\u003eBenefits 86\u003c\/p\u003e \u003cp\u003eTypes of Risks Mitigated 86\u003c\/p\u003e \u003cp\u003eThreat Modeling Revisited 87\u003c\/p\u003e \u003cp\u003eFraming the Engagement 87\u003c\/p\u003e \u003cp\u003eScoping in Frame 87\u003c\/p\u003e \u003cp\u003eMotivation in Frame 88\u003c\/p\u003e \u003cp\u003eThe Right Way In 88\u003c\/p\u003e \u003cp\u003eReverse Engineering 88\u003c\/p\u003e \u003cp\u003eTargeting 89\u003c\/p\u003e \u003cp\u003eInbound Access 89\u003c\/p\u003e \u003cp\u003ePersistence 89\u003c\/p\u003e \u003cp\u003eEgress Controls 90\u003c\/p\u003e \u003cp\u003eLOLBins 90\u003c\/p\u003e \u003cp\u003eRundll32.exe 91\u003c\/p\u003e \u003cp\u003eRegsvr32.exe 91\u003c\/p\u003e \u003cp\u003eMSbuild.exe 92\u003c\/p\u003e \u003cp\u003eCscript.exe 92\u003c\/p\u003e \u003cp\u003eCsc.exe 92\u003c\/p\u003e \u003cp\u003eLegitimate Usage? 92\u003c\/p\u003e \u003cp\u003eThreat Hunting 93\u003c\/p\u003e \u003cp\u003eBegin with a Question 93\u003c\/p\u003e \u003cp\u003eThe Hunt 94\u003c\/p\u003e \u003cp\u003eApplying the Concepts 94\u003c\/p\u003e \u003cp\u003eDumping Memory 95\u003c\/p\u003e \u003cp\u003eLateral Movement 95\u003c\/p\u003e \u003cp\u003eSecondary C2 96\u003c\/p\u003e \u003cp\u003eProof of Concept 97\u003c\/p\u003e \u003cp\u003eAttack Simulations 97\u003c\/p\u003e \u003cp\u003eSimulation vs. Emulation 97\u003c\/p\u003e \u003cp\u003eWhy Test? 98\u003c\/p\u003e \u003cp\u003eRisky Assumptions 99\u003c\/p\u003e \u003cp\u003ePractice Is Key 100\u003c\/p\u003e \u003cp\u003eTools for Testing 100\u003c\/p\u003e \u003cp\u003eMicrosoft Defender for O365 101\u003c\/p\u003e \u003cp\u003eAtomic Red Team 102\u003c\/p\u003e \u003cp\u003eCaldera 103\u003c\/p\u003e \u003cp\u003eScythe 103\u003c\/p\u003e \u003cp\u003eSummary 104\u003c\/p\u003e \u003cp\u003eNotes 104\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 6 Becoming an Advanced Active Defender 107\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Advanced Active Defender 107\u003c\/p\u003e \u003cp\u003eAutomated Attack Emulations 108\u003c\/p\u003e \u003cp\u003eUsing Deceptive Technologies 108\u003c\/p\u003e \u003cp\u003eHoney Tokens 109\u003c\/p\u003e \u003cp\u003eDecoy Accounts 109\u003c\/p\u003e \u003cp\u003eEmail Addresses 110\u003c\/p\u003e \u003cp\u003eDatabase Data 110\u003c\/p\u003e \u003cp\u003eAWS Keys 111\u003c\/p\u003e \u003cp\u003eCanary Tokens 111\u003c\/p\u003e \u003cp\u003eHoneypots 111\u003c\/p\u003e \u003cp\u003eOther Forms of Deception 112\u003c\/p\u003e \u003cp\u003eWeb Server Header 112\u003c\/p\u003e \u003cp\u003eUser Agent Strings 113\u003c\/p\u003e \u003cp\u003eFake DNS Records 113\u003c\/p\u003e \u003cp\u003eWorking with Offensive Security Teams 114\u003c\/p\u003e \u003cp\u003eBut We Need a PenTest! 114\u003c\/p\u003e \u003cp\u003ePotential Testing Outcomes 115\u003c\/p\u003e \u003cp\u003eVulnerability Identification 116\u003c\/p\u003e \u003cp\u003eVulnerability Exploitation 116\u003c\/p\u003e \u003cp\u003eTargeted Detection\/Response 116\u003c\/p\u003e \u003cp\u003eReal Threat Actor 117\u003c\/p\u003e \u003cp\u003eDetection Analysis 117\u003c\/p\u003e \u003cp\u003eScope 117\u003c\/p\u003e \u003cp\u003eScoping Challenges 118\u003c\/p\u003e \u003cp\u003eAdditional Scope Considerations 118\u003c\/p\u003e \u003cp\u003eDecisions, Decisions 119\u003c\/p\u003e \u003cp\u003eMeasuring Existing Defenses 119\u003c\/p\u003e \u003cp\u003eCrown Jewels 119\u003c\/p\u003e \u003cp\u003eSelecting a Vendor 120\u003c\/p\u003e \u003cp\u003eReputation 120\u003c\/p\u003e \u003cp\u003eExperience and Expertise 121\u003c\/p\u003e \u003cp\u003eProcesses 121\u003c\/p\u003e \u003cp\u003eData Security 122\u003c\/p\u003e \u003cp\u003eAdversarial Attitudes 122\u003c\/p\u003e \u003cp\u003eResults 123\u003c\/p\u003e \u003cp\u003eAdditional Considerations 123\u003c\/p\u003e \u003cp\u003ePurple Teaming – Collaborative Testing 124\u003c\/p\u003e \u003cp\u003eWhat Is a Purple Team? 124\u003c\/p\u003e \u003cp\u003ePurple Team Exercises 125\u003c\/p\u003e \u003cp\u003eCyber Threat Intelligence 125\u003c\/p\u003e \u003cp\u003ePreparation 126\u003c\/p\u003e \u003cp\u003eExercise Execution 126\u003c\/p\u003e \u003cp\u003eLessons Learned 127\u003c\/p\u003e \u003cp\u003ePurple Teams and Advanced Active Defenders 127\u003c\/p\u003e \u003cp\u003eSummary 127\u003c\/p\u003e \u003cp\u003eNotes 128\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 7 Building Effective Detections 129\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003ePurpose of Detection 129\u003c\/p\u003e \u003cp\u003eFunnel of Fidelity 130\u003c\/p\u003e \u003cp\u003eCollection 130\u003c\/p\u003e \u003cp\u003eDetection 130\u003c\/p\u003e \u003cp\u003eTriage 131\u003c\/p\u003e \u003cp\u003eInvestigation 131\u003c\/p\u003e \u003cp\u003eRemediation 131\u003c\/p\u003e \u003cp\u003eBuilding Detections: Identification and Classification 131\u003c\/p\u003e \u003cp\u003eOverall Detection Challenges 132\u003c\/p\u003e \u003cp\u003eAttention Problem 132\u003c\/p\u003e \u003cp\u003ePerception Problem 133\u003c\/p\u003e \u003cp\u003eAbstraction Problem 134\u003c\/p\u003e \u003cp\u003eValidation Problem 135\u003c\/p\u003e \u003cp\u003eThe Pyramids Return 135\u003c\/p\u003e \u003cp\u003eLower Levels 136\u003c\/p\u003e \u003cp\u003eTools 137\u003c\/p\u003e \u003cp\u003eWrong Viewpoint 137\u003c\/p\u003e \u003cp\u003eBypass Options 138\u003c\/p\u003e \u003cp\u003eHigher Levels 139\u003c\/p\u003e \u003cp\u003eTesting 140\u003c\/p\u003e \u003cp\u003eLiteral Level 140\u003c\/p\u003e \u003cp\u003eFunctional Level 140\u003c\/p\u003e \u003cp\u003eOperational Level 141\u003c\/p\u003e \u003cp\u003eTechnical Level 142\u003c\/p\u003e \u003cp\u003eProper Validation: Both Telemetry and Detection 143\u003c\/p\u003e \u003cp\u003eTelemetry Coverage 143\u003c\/p\u003e \u003cp\u003eDetection Coverage 144\u003c\/p\u003e \u003cp\u003eTesting Solutions 144\u003c\/p\u003e \u003cp\u003eAtomic Red Team 144\u003c\/p\u003e \u003cp\u003eAtomicTestHarness 145\u003c\/p\u003e \u003cp\u003eSummary 146\u003c\/p\u003e \u003cp\u003eNotes 147\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 8 Actively Defending Cloud Computing Environments 149\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eCloud Service Models 150\u003c\/p\u003e \u003cp\u003eIaaS 150\u003c\/p\u003e \u003cp\u003ePaaS 150\u003c\/p\u003e \u003cp\u003eSaaS 150\u003c\/p\u003e \u003cp\u003eCloud Deployment Environments 151\u003c\/p\u003e \u003cp\u003ePrivate Cloud 151\u003c\/p\u003e \u003cp\u003ePublic Cloud 151\u003c\/p\u003e \u003cp\u003eFundamental Differences 151\u003c\/p\u003e \u003cp\u003eOn-Demand Infrastructure 152\u003c\/p\u003e \u003cp\u003eShared Responsibility Model 152\u003c\/p\u003e \u003cp\u003eControl Plane and Data Plane 153\u003c\/p\u003e \u003cp\u003eInfrastructure as an API 154\u003c\/p\u003e \u003cp\u003eData Center Mapping 154\u003c\/p\u003e \u003cp\u003eIAM Focus 155\u003c\/p\u003e \u003cp\u003eCloud Security Implications 157\u003c\/p\u003e \u003cp\u003eLarger Attack Surface 158\u003c\/p\u003e \u003cp\u003eNew Types of Exposed Services 158\u003c\/p\u003e \u003cp\u003eApplication Security Emphasis 159\u003c\/p\u003e \u003cp\u003eChallenges with API Use 160\u003c\/p\u003e \u003cp\u003eCustom Applications 161\u003c\/p\u003e \u003cp\u003eCloud Offensive Security 161\u003c\/p\u003e \u003cp\u003eEnumeration of Cloud Environments 162\u003c\/p\u003e \u003cp\u003eCode Repositories 162\u003c\/p\u003e \u003cp\u003ePublicly Accessible Resources 163\u003c\/p\u003e \u003cp\u003eInitial Access 164\u003c\/p\u003e \u003cp\u003ePhishing\/Password Spraying 164\u003c\/p\u003e \u003cp\u003eStealing Access Tokens 164\u003c\/p\u003e \u003cp\u003eResource Exploitation 165\u003c\/p\u003e \u003cp\u003ePost-Compromise Recon 165\u003c\/p\u003e \u003cp\u003ePost-Exploitation Enumeration 166\u003c\/p\u003e \u003cp\u003eRoles, Policies, and Permissions 166\u003c\/p\u003e \u003cp\u003eDangerous Implied Trusts 166\u003c\/p\u003e \u003cp\u003eOverly Permissive Configurations 170\u003c\/p\u003e \u003cp\u003eMulti-Level Access 170\u003c\/p\u003e \u003cp\u003ePersistence\/Expansion 171\u003c\/p\u003e \u003cp\u003eLateral Movement 172\u003c\/p\u003e \u003cp\u003ePrivilege Escalation 173\u003c\/p\u003e \u003cp\u003eDefense Strategies 175\u003c\/p\u003e \u003cp\u003eSummary 175\u003c\/p\u003e \u003cp\u003eNotes 176\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 9 Future Challenges 179\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eSoftware Supply Chain Attacks 179\u003c\/p\u003e \u003cp\u003eA Growing Problem 180\u003c\/p\u003e \u003cp\u003eActively Defending 180\u003c\/p\u003e \u003cp\u003eCounterfeit Hardware 181\u003c\/p\u003e \u003cp\u003eFake CISCO Hardware 181\u003c\/p\u003e \u003cp\u003eActively Defending 182\u003c\/p\u003e \u003cp\u003eUEFI 182\u003c\/p\u003e \u003cp\u003eIncreasing Vulnerabilities 182\u003c\/p\u003e \u003cp\u003eEnter BlackLotus 183\u003c\/p\u003e \u003cp\u003eMSI Key Leak 184\u003c\/p\u003e \u003cp\u003eActively Defending 185\u003c\/p\u003e \u003cp\u003eBYOVD Attacks 185\u003c\/p\u003e \u003cp\u003eLazarus Group 186\u003c\/p\u003e \u003cp\u003eCuba Ransomware Group 186\u003c\/p\u003e \u003cp\u003eActively Defending 186\u003c\/p\u003e \u003cp\u003eRansomware 186\u003c\/p\u003e \u003cp\u003eContinuing Evolution 187\u003c\/p\u003e \u003cp\u003eActively Defending 187\u003c\/p\u003e \u003cp\u003eTabletop Exercises 188\u003c\/p\u003e \u003cp\u003eRansomware Playbooks 189\u003c\/p\u003e \u003cp\u003eFrameworks 191\u003c\/p\u003e \u003cp\u003eCobalt Strike 192\u003c\/p\u003e \u003cp\u003eSilver 192\u003c\/p\u003e \u003cp\u003eMetasploit 192\u003c\/p\u003e \u003cp\u003eBrute Ratel 193\u003c\/p\u003e \u003cp\u003eHavoc 193\u003c\/p\u003e \u003cp\u003eMythic 193\u003c\/p\u003e \u003cp\u003eActively Defending 194\u003c\/p\u003e \u003cp\u003eLiving Off the Land 194\u003c\/p\u003e \u003cp\u003eActively Defending 195\u003c\/p\u003e \u003cp\u003eAPI Security 195\u003c\/p\u003e \u003cp\u003eDefining APIs 195\u003c\/p\u003e \u003cp\u003eAPI Impact 196\u003c\/p\u003e \u003cp\u003eSecurity Significance 196\u003c\/p\u003e \u003cp\u003eActively Defending 196\u003c\/p\u003e \u003cp\u003eEverything Old Is New Again 197\u003c\/p\u003e \u003cp\u003eOWASP Top 10 197\u003c\/p\u003e \u003cp\u003eOld Malware Never (Really) Dies 198\u003c\/p\u003e \u003cp\u003eEmotet 198\u003c\/p\u003e \u003cp\u003eREvil 199\u003c\/p\u003e \u003cp\u003eActively Defending 199\u003c\/p\u003e \u003cp\u003eSummary 200\u003c\/p\u003e \u003cp\u003eNotes 201\u003c\/p\u003e \u003cp\u003eIndex 203\u003c\/p\u003e","brand":"John Wiley \u0026 Sons Inc","offers":[{"title":"Default Title","offer_id":49407185486167,"sku":"9781119895213","price":19.54,"currency_code":"GBP","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0817\/1739\/5799\/files\/9781119895213.jpg?v=1730498476","url":"https:\/\/bookcurl.com\/products\/the-active-defender-9781119895213","provider":"Book Curl","version":"1.0","type":"link"}