Back to Library
Cybersecurity: Defending the Digital World
Defending the Digital World
308
Sections
67
Chapters
10
Parts
Free
Always
Start Reading
About This Book
A comprehensive textbook on Cybersecurity: Defending the Digital World.
Table of Contents
Front Matter
1.
Preface
2.
How to Use This Book
3.
Prerequisites
4.
Acknowledgments
5.
Cybersecurity: Defending the Digital World — Master Outline
Part I: Security Foundations
1.
Part I: Security Foundations
2.
Chapter 1: What Is Cybersecurity? Threats, Vulnerabilities, Risk, and Why Everything Is Under Attack
3.
Chapter 2: The Threat Landscape: Who Attacks, Why They Attack, and How Attacks Actually Work
4.
Chapter 3: Security Principles: CIA Triad, Defense in Depth, Least Privilege, and Zero Trust
5.
Chapter 4: Cryptography Fundamentals: Encryption, Hashing, Digital Signatures, and PKI
6.
Chapter 5: Applied Cryptography: TLS, VPNs, Disk Encryption, and Securing Data in Transit and at Rest
Part II: Network Security
1.
Part II: Network Security
2.
Chapter 6: Network Security Fundamentals: TCP/IP, Ports, Protocols, and Where Attacks Live
3.
Chapter 7: Firewalls, IDS/IPS, and Network Access Control: The Perimeter That Doesn't Exist Anymore
4.
Chapter 8: Wireless Security: WiFi, Bluetooth, and the Invisible Attack Surface
5.
Chapter 9: DNS, Email, and Web Security: Securing the Protocols Everyone Uses Every Day
6.
Chapter 10: Network Monitoring and Traffic Analysis: Seeing the Invisible with Wireshark, Zeek, and Flow Data
Part III: System and Application Security
1.
Part III: System and Application Security
2.
Chapter 11: Operating System Security: Hardening Windows, Linux, and macOS
3.
Chapter 12: Application Security: OWASP Top 10, Secure Coding, and Why Developers Are the First Line of Defense
4.
Chapter 13: Web Application Security: SQL Injection, XSS, CSRF, and the Attacks That Never Get Old
5.
Chapter 14: Mobile and IoT Security: Securing the Devices That Outnumber Humans
6.
Chapter 15: Cloud Security: AWS, Azure, GCP — Shared Responsibility and the New Attack Surface
Part IV: Identity and Access Management
1.
Part IV: Identity and Access Management
2.
Chapter 16: Authentication: Passwords, MFA, Biometrics, Passkeys, and Why Passwords Won't Die
3.
Chapter 17: Authorization and Access Control: RBAC, ABAC, and Who Gets Access to What
4.
Chapter 18: Identity Governance: SSO, Federation, Directory Services, and Managing a Million Accounts
5.
Chapter 19: Privileged Access Management: Protecting the Keys to the Kingdom
6.
Chapter 20: Secrets and Machine Identity: Service Accounts, API Keys, Certificates, and Securing Non-Human Access
Part V: Security Operations
1.
Part V: Security Operations
2.
Chapter 21: Security Information and Event Management (SIEM): Centralized Logging and Correlation
3.
Chapter 22: Threat Detection and Hunting: Indicators of Compromise, Threat Intelligence, and Hunting for Adversaries
4.
Chapter 23: Vulnerability Management: Scanning, Prioritizing, Patching, and the Vulnerability That Never Gets Fixed
5.
Chapter 24: Incident Response: Preparation, Detection, Containment, Eradication, Recovery, and Lessons Learned
6.
Chapter 25: Digital Forensics for Defenders: Preserving Evidence, Timeline Analysis, and Post-Breach Investigation
Part VI: Governance, Risk, and Compliance
1.
Part VI: Governance, Risk, and Compliance
2.
Chapter 26: Security Governance: Policies, Standards, Procedures, and Building a Security Program
3.
Chapter 27: Risk Management: Identifying, Assessing, Mitigating, and Accepting Risk
4.
Chapter 28: Compliance Frameworks: NIST CSF, ISO 27001, SOC 2, PCI-DSS, HIPAA, and GDPR
5.
Chapter 29: Third-Party and Supply Chain Risk Management: Vendor Risk, SBOMs, and Trusting What You Didn't Build
6.
Chapter 30: Security Awareness Training: The Human Firewall (and Why Phishing Still Works)
Part VII: Advanced and Emerging Topics
1.
Part VII: Advanced and Emerging Topics
2.
Chapter 31: DevSecOps: Integrating Security into CI/CD Pipelines and the Software Development Lifecycle
3.
Chapter 32: Zero Trust Architecture: Never Trust, Always Verify — Designing for the Post-Perimeter World
4.
Chapter 33: Securing Operational Technology: ICS, SCADA, and Critical Infrastructure Defense
5.
Chapter 34: AI and Machine Learning in Security: Anomaly Detection, Threat Prediction, and Adversarial AI
6.
Chapter 35: Emerging Threats: Supply Chain Attacks, Ransomware Evolution, Deepfakes, and Post-Quantum Cryptography
Part VIII: Synthesis
1.
Part VIII: Synthesis
2.
Chapter 36: Security Metrics, Measurement, and Reporting to the Board
3.
Chapter 37: Building and Leading the Security Function: Teams, Culture, and the Modern SOC
4.
Chapter 38: Capstone: Building a Complete Security Program from Risk Assessment to Board Presentation
5.
Chapter 39: The Cybersecurity Career: Certifications, Specializations, and the Path from Analyst to CISO
6.
Chapter 40: Case Studies: SolarWinds, Colonial Pipeline, Log4Shell, and the Breaches That Changed the Industry
Appendices
1.
Appendix A: Security Frameworks and Controls Reference
2.
Appendix B: The `bluekit` Defender's Toolkit
3.
Appendix C: Defensive Tool Reference
4.
Appendix D: Incident-Response Playbooks
5.
Appendix E: Compliance Crosswalk
6.
Appendix F: Hardening Checklists
7.
Appendix G: Cryptography Reference
8.
Appendix H: Certification Roadmap
9.
Appendix I: Security Policy Templates
10.
Appendix J: Resources and Communities
11.
Glossary
12.
Answers to Selected Exercises
13.
Index
14.
Bibliography
Share This Book
Twitter
Reddit
LinkedIn
Copy Link
We use cookies to improve your experience and show relevant ads.
Privacy Policy
Essential Only
Accept All