Includes index

If you hope to outmaneuver threat actors, speed and efficiency need to be key components of your cybersecurity operations. Mastery of the standard command-line interface (CLI) is an invaluable skill in times of crisis because no other software application can match the CLI's availability, flexibility, and agility. This practical guide shows you how to use the CLI with the bash shell to perform tasks such as data collection and analysis, intrusion detection, reverse engineering, and administration. Authors Paul Troncone, founder of Digadel Corporation, and Carl Albing, coauthor of bash cookbook (O'Reilly), provide insight into command-line tools and techniques to help defensive operators collect data, analyze logs, and monitor networks. Penetration testers will learn how to leverage the enormous amount of functionality built into nearly every version of Linux to enable offensive operations

Part 1.

Foundations. Command-line primer -- Bash primer -- Regular expressions primer -- Principles of defense and offense --

Part 2.

Defensive security operations with bash. Data collection -- Data processing -- Data analysis -- Real-time log monitoring -- Tool : network monitor -- Tool : filesystem monitor -- Malware analysis -- Formatting and reporting --

Part 3.

Penetration testing with bash. Reconnaissance -- Script obfuscation -- Tool : command-line fuzzer -- Establishing a foothold --

Part 4.

Security administration with bash. Users, groups, and permissions -- Writing log entries -- Tool : system availability monitor -- Tool : software inventory -- Tool : validating configuration -- Tool : account auditing -- Conclusion