Since 1998 Richard Bejtlich has defended Western interests from intruders. Mr. Bejtlich promotes Network Security Monitoring solutions to help global organizations stay in business by detecting and responding to digital threats. Visit TaoSecurity Blog or follow @taosecurity for the latest news.
My latest book on NSM, published by No Starch (use code NSM101 to save 30% when buying from the publisher).
My pioneering book on detecting intrusions by watching outbound traffic, published by Addison-Wesley.
My book on investigating intrusions, co-authored with Keith Jones and Curtis Rose, published by Addison-Wesley.
I wrote the foreword for this ground-breaking book by Michael Sikorski and Andrew Honig, published by No Starch.
I wrote the foreword for this innovative book by Michael Rash, published by No Starch.
I contributed the material for chapter 8 ("Collecting Network-Based Evidence") and chapter 14 ("Analyzing Network Traffic") in the second edition of this book by Kevin Mandia, Chris Prosise, and Matt Pepe. I recommend buying the newer third edition, by Jason Luttgens, Matt Pepe, and Kevin Mandia, published by McGraw-Hill.
I contributed "Case Study: Network Security Monitoring" to the fourth edition of this book by Stuart McClure, Joel Scambray, and George Kurtz. It contained the first discussion of NSM in a book, aside from the academic papers by NSM inventor Todd Heberlein. I recommend buying the newer seventh edition, published by McGraw-Hill.
I contributed the foreword for this collection of essays published by Sqrrl, prior to their acquisition by Amazon. David Bianco hosts a copy at ThreatHunting.net. My last name is spelled correctly on the cover and in my signature, but not elsewhere.