AI-Enabled Threat Intelligence and Cyber Risk Assessment
AI-Enabled Threat Intelligence and Cyber Risk Assessment delves into the transformative potential of artificial intelligence (AI) in revolutionizing cybersecurity, offering a comprehensive exploration of current trends, challenges, and future possibilities in mitigating cyber risks.
Defending the Metaverse
Defending the Metaverse is aimed at a diverse audience including students, researchers, academicians, cybersecurity professionals, IT managers, Metaverse developers, business leaders, policymakers, and tech enthusiasts.
Systematic Security
Systematic Security: A CISO's Playbook by Timur Qader offers a groundbreaking guide to building a resilient and scalable security practice from the ground up. Blending real-world experience with practical insights, this book lays out a phased approach to security implementation.
DDoS
Distributed Denial of Service (DDoS) attacks are frequently taking down websites and are making headlines. But how exactly do these attacks work? How is it possible to defend against them? Is it even possible? DDoS mitigation providers often take lengths to publicly explain how dangerous new types of attacks are, but hardly ever describe typical mitigation steps except: "just use our services". This book will help readers better understand the technical details of DDoS attacks and give step-by-step guidance in how to defend against them. Key topics are: Introduction to DDoS and its history, Network basics needed to understand DDoS, Datacenter technologies and their relevance, Attack origins of DDoS, Deep-dive into attacks and their mitigation, Designing DDoS mitigation systems, Active network self-defense and Internet hygiene, Introduction to the economical side of DDoS attacks The book features an appendix with DDoS risk and mitigation readiness assessments and several labs you can configure to gain first-hand experience on attack and defense.
Security Technologies for Law Enforcement Agencies
"Security Technologies for Law Enforcement Agencies" offers a comprehensive examination of the tools, systems, and concepts that form the foundation of modern security infrastructures.
AI-Enabled Threat Intelligence and Cyber Risk Assessment
AI-Enabled Threat Intelligence and Cyber Risk Assessment delves into the transformative potential of artificial intelligence (AI) in revolutionizing cybersecurity, offering a comprehensive exploration of current trends, challenges, and future possibilities in mitigating cyber risks.
Systematic Security
Systematic Security: A CISO's Playbook by Timur Qader offers a groundbreaking guide to building a resilient and scalable security practice from the ground up. Blending real-world experience with practical insights, this book lays out a phased approach to security implementation.
Learn React Hooks - Second Edition
Grasp the core concepts of React Hooks and enhance your development workflow with best practices and advanced patterns derived from modern React 19 featuresKey Features: - Build custom Hooks to simplify complex logic and promote code reusability- Transform class components into modern, hook-based function components, and write robust tests- Build maintainable, production-ready UIs using React 19's declarative approach and ecosystem tools- Purchase of the print or Kindle book includes a free PDF eBookBook Description: React Hooks allow you to easily encapsulate, reuse, and refactor logic with the same level of simplicity that components bring to user interface organization.In this second edition, React expert and author of many popular React books, Daniel Bugl guides you through the full spectrum of React Hooks, and teaches you how to handle forms, routing, and data fetching in modern React development. This edition is fully updated to React 19, with a revamped structure, expanded real-world use cases, and coverage of all newly introduced Hooks.Starting with the fundamentals, you'll gain a deep understanding of how Hooks work under the hood and how to apply Hooks patterns efficiently. The chapters guide you through using State, Reducer, and Effect Hooks to manage application state, side effects, and complex logic for building your first Hook-based app. You'll utilize Suspense and Context APIs for streamlined data fetching and state management, master Form Actions for handling submissions, and implement routing with Hooks. You'll also create custom Hooks for advanced functionality and write tests for reliability. Finally, you'll learn how to refactor an existing app with class components into modern Hooks architecture.By the end of this React book, you'll be well-equipped to use React Hooks to modernize and optimize your React projects.What You Will Learn: - Master and apply new React 19 Hooks, such as useActionState, useFormStatus, useOptimistic, and others- Use React Hooks and Context to manage state in your web applications- Efficiently fetch, update, and cache data using TanStack Query and Suspense- Manage user input and form submission using Form Actions with Hooks- Discover how to implement routing in your apps using React Router and Hooks- Create and test your own Hooks to encapsulate, reuse, and refactor logic in your appsWho this book is for: This book is ideal for React developers looking to modernize their applications using React Hooks, Context, and Suspense. Beginners and experienced developers alike will gain a solid understanding of Hooks and their internal workings. If you're familiar with React and JavaScript, this book will help you upskill by teaching you best practices, performance optimization, and scalable application building. No prior experience with Hooks is required-this book covers everything from fundamentals to advanced patterns.Table of Contents- Introducing React and React Hooks- Using the State Hook- Writing Your First Application with React Hooks- Using the Reducer and Effect Hooks- Implementing React Contexts- Using Hooks and React Suspense for Data Fetching- Using Hooks for Handling Forms- Using Hooks for Routing- Advanced Hooks Provided by React- Using Community Hooks- Rules of Hooks- Building Your Own Hooks- Migrating from React Class Components
Would You Date Your Website?
If your website were a person, what kind of impression would they make on a date?Most people have had or heard about an awful dating experience (or been one!). How does your website stack up? Is it attractive to the people you're interested in?Does it make them want to spend their time? Or are there red flags pushing people away? Things like cluttered pages, broken links, confusing navigation, or slow load times. A bad experience has a greater impact than you think. "Their website sucks. The company probably does too." A small misstep is all it takes-it can rob you of the chance to tell someone why you're a good fit and earn their trust.Because interactions may be entirely online, your website is you, your business, your reputation. That puts a lot of pressure on your site to start a relationship on the right foot, nurture it, and keep it strong over the long term. Whether you're building a new website, have an older one you want to breathe life into (and avoid a redesign), or a new site that isn't generating the leads or sales it should, this book is for you. I'll help you craft a website that attracts the people you're interested in, and entices them to start-and stay-in a relationship. A website they'd like to date.
The Web, A Multilingual Encyclopedia
Unlock the secrets of the digital age with "The Web: A Multilingual Encyclopedia" by Marie Lebert, a timeless masterpiece that was out of print for decades and is now beautifully republished by Alpha Editions. This collector's item is not just a reprint; it's a cultural treasure, meticulously restored for today's and future generations. Dive into the fascinating evolution of the internet, as Lebert expertly weaves together a tapestry of knowledge that transcends language and borders. This unique volume offers an unparalleled exploration of the web's impact on global communication, education, and culture. Whether you're a casual reader or a classic literature collector, you'll be captivated by the book's insightful analysis and visionary perspective. "The Web" is more than just an encyclopedia; it's a journey through the digital revolution that continues to shape our world. Don't miss your chance to own a piece of history that celebrates the power of connectivity and the enduring value of knowledge.
Modern Web Apps using Rust
This book introduces you to web development with Rust and Leptos. To begin with, you install a solid Rust toolchain and set up Leptos in VS Code, and then you see your first "Hello World" interface rendered via WebAssembly right away. So, first you'll design a microservice-inspired book-selling sample app, called LibroCommerce, into inventory, orders, and user accounts. Then, you'll connect each piece with Axum handlers, SQLx queries, and shared Serde models.By the time you get to Chapter 3, you'll have built a nonblocking, Tokio-driven server that handles dynamic routes, powers Leptos SSR pages, and secures endpoints with JWT and OAuth2. Then, you add real-time features: WebSockets send stock updates and order-status events to reactive Leptos signals, keeping the UI and backend in sync. As you go, you'll be writing end-to-end Playwright tests and setting up GitHub Actions so that every commit runs Rust tests, Playwright scenarios, Docker builds, and Kubernetes rollouts automatically. You'll learn how to connect to PostgreSQL with an async pool, model Books, Users, and Orders with Serde-annotated Rust structs, and implement CRUD, password hashing with Argon2, encrypted backups, and session stores in Redis. Performance tuning shows you how to optimize Tokio threads, tune SQLx pools, stream large result sets, debounce client inputs, and apply backpressure. At last, you put each microservice and frontend into Docker containers, deploy them with Kubernetes, and then use serverless.It's packed with over 100 bite-sized examples and ready-to-run solutions, and it'll walk you through building and operating a production-style web application in Rust, step-by-step. You won't become a Rust language expert, but you'll finish ready to design, code, test, and deploy modern web apps.Key Learnings Start using Rust and Leptos with VS Code to develop web applications using WebAssembly.Architect microservices with inventory, orders, and user modules for modular, scalable applications.Make servers that respond to user activity and are not blocked by other users. Use Tokio and Axum with dynamic routing and concurrency.Employ business logic with SQLX, transactions, and external API integration for real-world workflows.Protect your devices with JWT, OAuth2, Argon2 password hashing, HttpOnly cookies, and TLS encryption.Handle database state asynchronously, define Serde data models, and perform efficient CRUD operations.Utilize WebSockets, Leptos signals, and broadcast channels to enable real-time updates.Perform end-to-end testing with Playwright, integration tests, and automated CI pipelines for reliability.Put microservices and the frontend into containers using Docker, and use Kubernetes to orchestrate them so they can be deployed without any downtime.Table of Content Setting up Rust & Leptos EnvironmentDesigning Modern ArchitectureBuilding Application ServerDatabase Integration and State ManagementModern Interactions with REST, GraphQL, and OAuthFront-end Development with Leptos and WebAssemblyReal-time Interactions using WebsocketModern Security, Performance, and Cloud StrategiesCloud-native Releases and Continuous Delivery
Cryptography for Payment Professionals
The book is a one-stop source for cryptographic methods used in payment technologies in major global markets: legacy magnetic stripe (e.g., EMV, 3DS 2.0, DUKPT). It provides a broad overview of the relevant cryptographic algorithms and methods, putting them in context for various payment processing aspects and security standards.
Cyber Insecurity
Cyber Insecurity: Examining the Past, Defining the Future deals with the multifaceted world of cybersecurity, starting with the premise that while perfection in cybersecurity may be unattainable, significant improvements can be made through understanding history and fostering innovation.
Public-Key Cryptography - Pkc 2025
The five-volume set LNCS 15674-15678 constitutes the refereed proceedings of the 28th IACR International Conference on Practice and Theory of Public Key Cryptography, PKC 2025, held in R繪ros, Norway, during May 12-15, 2025. The 60 papers included in these proceedings were carefully reviewed and selected from 199 submissions. They are grouped into these topical sections: MPC and friends; advanced PKE; security of post-quantum signatures; proofs and arguments; multi-signatures; protocols; foundations of lattices and LPN; threshold signatures; isogenies and group actions; secure computation; security against real-world attacks; batch arguments and decentralized encryption; and cryptography for blockchains.
Public-Key Cryptography - Pkc 2025
The five-volume set LNCS 15674-15678 constitutes the refereed proceedings of the 28th IACR International Conference on Practice and Theory of Public Key Cryptography, PKC 2025, held in R繪ros, Norway, during May 12-15, 2025.The 60 papers included in these proceedings were carefully reviewed and selected from 199 submissions. They are grouped into these topical sections: MPC and friends; advanced PKE; security of post-quantum signatures; proofs and arguments; multi-signatures; protocols; foundations of lattices and LPN; threshold signatures; isogenies and group actions; secure computation; security against real-world attacks; batch arguments and decentralized encryption; and cryptography for blockchains.
CompTIA CASP+ (CAS-005) Certification Guide
DESCRIPTION CompTIA Advanced Security Practitioner (CASP+) is a vendor-neutral security certification. It validates advanced-level core technical skills, including active management of security engineering, operations, incidents, handling enterprise-level risk assessments, and IT governance. This book navigates the critical domains of the CASP+ exam. It begins by establishing the business and industry context influencing IT security, followed by organizational governance, risk management, and crucial risk mitigation strategies. You will understand enterprise risk measurement, principles of secure architecture, and the practical application of security controls across networks, hosts, storage, and the evolving landscape of IoT and cloud technologies. Furthermore, this book explores application vulnerabilities, the importance of continuous security research, securing communication and collaboration, implementing cryptographic techniques, and mastering IAM. Finally, it covers the vital areas of security operations, incident response, the integration of diverse IT systems, and security considerations in the technology lifecycle; it also includes practice exams to reinforce learning.This new edition provides a broader coverage of organizational security, including governance, risk, and compliance, as well as a more detailed examination of cloud security and its integration with virtualization. By the end of this book, you will gain an understanding of advanced security concepts and practical techniques, empowering you to confidently tackle the CASP+ certification exam and apply expert-level security skills to protect and defend complex organizational environments.WHAT YOU WILL LEARN● LIntegrate hosts/networks/storage/applications/cloud; manage security lifecycle; assess CASP+ skills via mock exams.● Analyze real-world scenarios involving cloud, virtualization, networks, servers, applications, and end-user systems. ● Core technical knowledge and hands-on skills to design, implement, and integrate security solutions across enterprise environments.● This edition brings enhanced practical learning with the inclusion of a second comprehensive CASP+ skill assessment exam.WHO THIS BOOK IS FORThis book is for security architects, senior security engineers, security leads, and security practitioners seeking to advance their expertise in designing and managing complex enterprise security landscapes. Readers should possess basic knowledge of foundational security principles and IT infrastructure concepts before reading this book.
Salesforce Security
Security breaches and data leaks can spell disaster for businesses, jeopardizing finances and eroding customer trust. Whether you're part of a multinational corporation or a burgeoning startup, ensuring your Salesforce instance is fortified against malicious cyber threats is crucial. Salesforce Security: An Admin's Guide is your comprehensive and lighthearted roadmap to secure your implementation--and your customers' data. Dive deep into the realm of cybersecurity with this engaging guide, where you'll unravel powerful concepts like the CIA triad and the Zero Trust model. Discover how to configure Salesforce settings for optimal security and use artificial intelligence to code securely, practices that will keep your implementations safe and scalable. This book equips you with the skills establish yourself as a security expert, designing scalable sharing models, implementing the principle of least privilege, encrypting sensitive information, and selecting robust authentication systems. With detailed, step-by-step instructions, you'll learn to manage users efficiently, control record access meticulously, and optimize permissions through profiles and permission sets-all while establishing standard operating procedures for audits that are both effective and straightforward. Beyond the basics, you'll learn about persona mapping and building trust with your super users. You'll learn about vulnerabilities (and their mitigations) for Salesforce experience cloud and the Salesforce Mobile app. Each chapter is peppered with real-world use cases and practical examples that empower you to apply these techniques effortlessly to your own Salesforce environment. By the end of this transformative journey, you'll not only possess foundational knowledge but also emerge as a Salesforce security expert ready to elevate your career. Impress managers and delight customers while ensuring your organization stands resilient against cyber threats. What You'll Discover: Learn security principles through the CIA triad and Zero Trust framework.Design least privilege sharing models and access systems that scale with your business.Ensure security for Salesforce mobile using enhanced security controls.Secure experience sites, integrations, and platform features effectively.Leverage innovative Salesforce AI tools to write secure, scalable code.Step into the future of Salesforce security-your journey starts here!
The ChatGPT Revolution
Delving into ChatGPT's architecture and ability to generate human-like text, chapters go beyond technical explanations, exploring the factors contributing to ChatGPT's widespread adoption and its significance in society and industry. The work showcases how ChatGPT has transformed conversational experiences, revolutionizing customer service, streamlining business processes, and enhancing user engagement across various domains. Authors address the potential pitfalls and ethical concerns associated with ChatGPT. They delve into bias, misinformation, and the potential amplification of harmful content that may arise, as well as revealing insights into responsible AI practices, transparency, and accountability, emphasizing the importance of mitigating these risks and ensuring fairness in AI-driven conversations. Thoroughly examining the impact of ChatGPT on the workforce and the potential for job displacement, the need for upskilling and reskilling, and the importance of balanced integration of human oversight in chatbot interactions, the concept of collaborative human-AI systems is explored, where ChatGPT works alongside humans to enhance conversation quality and foster trust. The ChatGPT Revolution is essential reading for AI researchers and academics interested in the technical intricacies of ChatGPT, industry professionals in AI and NLP seeking practical insights for real-world applications, and ethics and responsible AI practitioners focusing on mitigating ethical concerns.
Mastering AI for Healthcare
Harness AI-led Revolution to Deliver Smarter, Faster, and Better Healthcare. Book DescriptionArtificial Intelligence is rapidly becoming indispensable in modern healthcare-reshaping how we diagnose, treat, and deliver care. Mastering AI for Healthcare offers a clear, structured journey through this transformation, helping readers understand the critical role AI plays in improving clinical outcomes and operational efficiency. The book begins with foundational AI concepts tailored for healthcare professionals, establishing a solid base in machine learning, neural networks, and data science. It then guides readers through practical applications across the care continuum-exploring how predictive analytics can forecast disease risks, how AI powers telemedicine and remote monitoring systems, and how it enhances clinical decision-making through smarter, data-driven EHR systems. Each chapter builds with real-world examples, case studies, and implementation frameworks, offering clarity on emerging tools like computer vision for diagnostics, personalized treatment algorithms, and intelligent automation in hospital workflows. Whether you're a healthcare professional, researcher, or policymaker, this book provides the insights you need to stay ahead in a tech-driven world. Don't get left behind-embrace the tools shaping the future of medicine and lead the change with confidence. Table of Contents1. Introducing AI in Healthcare2. AI Fundamentals for Healthcare3. Predictive Analysis in Healthcare4. Artificial Intelligence in Telemedicine Remote Patient Monitoring5. AI in Clinical Decision Support and Electronic Health Record6. Imaging and Diagnosis Using AI7. Challenges and Limitations of AI in Healthcare8. Future of AI in Healthcare Index
Information Security and Cryptology
The two-volume set LNCS 15543 and 15544 constitutes revised selected papers of the 20th International Conference on Information Security and Cryptology, Inscrypt 2024, held in Kunming, China, during December 14-16, 2024. The 47 full papers presented in these proceedings were carefully reviewed and selected from 156 submissions. The papers were organized in the following topical sections: Part I: Big data and cloud security; Foundations of Cryptography; Implementation of Cryptosystems; Key Exchange; AI and Security; Security Analysis; Privacy-enhancing technologies; Watermarking. Part II: Public Key Cryptosystems; Security Protocols Analysis; Symmetric Cryptanalysis; Quantum and Post Quantum Cryptography.
Terraform for Developers, Second Edition
This is the second edition of the Terraform for Developers book, presenting a thoroughly practical approach to using IaC for robust deployment and maintenance. This latest release is the most updated edition on Terraform, with the latest capabilities, patterns, and hands-on applications. Each chapter breaks down complex ideas into easy-to-follow steps, showing how to deal with the real challenges that come up in modern cloud deployments.You'll start by learning the basics, like providers, variables, and states. It also highlights some really cool modules, showing how to create, reuse, and share them across projects. Later on, it covers secrets management, showing how to store and handle sensitive data safely. It also covers advanced networking and multi-cloud usage, hurdles in bridging subnets, load balancers, and container orchestration frameworks. It also covers troubleshooting across the syntax, logic, and runtime issues that might occur. And it shows how to incorporate testing, from unit checks on modules to integration scenarios for multi-service environments.The final chapters cover advanced topics such as customizing workflows with CI/CD pipelines and using test environments. This book won't turn you into a Terraform master overnight, but it will show you all the practical features, patterns, and tricks to improve your infrastructure management.Key LearningsDiscover how Terraform streamlines resource provisioning.Write maintainable modules with confidence.Integrate advanced network constructs, subnets, and routing logic across multi-cloud topologies.Employ ephemeral credentials with Vault dynamic secrets.Automate robust tests, from unit checks to full environment validations.Practical debugging steps for syntax, semantic, and runtime errors.Adopt CI/CD pipelines to unify code reviews and automated deployments.Combine container orchestration solutions with Terraform's consistent state tracking to scale clusters.Structure microservices, security, and multi-environment usage.Track resource utilization, concurrency, and code maintainability across your stack.Table of ContentIntroduction to Terraform and IaCGetting Started with TerraformEssentials of Terraform Configuration LanguageTerraform Modules and Reusable InfrastructureTerraform State ManagementProvisioners and Provisioning ResourcesWorking with SecretsAdministering Networks with TerraformAdvanced Topics in TerraformAdministering Terraform As Expert
API Management with Bruno
​​​​​​​If you're an API practitioner, this book will show you how to use Bruno to its maximum capacity for managing your API lifecycle. Bruno is a new alternative to Postman and Insomnia; this practical book will teach you how to use it for API design, development, testing, deployment, and monitoring. The book is less concerned with helping you become an API Management expert than it is with showing you how to make the most of Bruno's features so that you can efficiently complete tasks in the real world.The chapters cover topics such as creating a safe and scalable development environment, using the Bruno command line interface (CLI), and creating API blueprints with Bru Lang that are easy to understand and maintain. You'll learn how to embed business logic, manage data transformations, and implement robust error handling to build dynamic endpoints that respond to real-time events. In an effort to protect sensitive information, practical implementations of OAuth 2.0 authorization, JWT authentication, and effective secret management are implemented. Your API's reliability and scalability under different conditions can be further assured with automated testing and live debugging sessions.You can automate mundane tasks and expand your API's functionality with the help of the advanced integrations covered in this book. These integrations allow you to connect to popular platforms like AWS, Jira, GitHub, and Jenkins. Additionally, you will become an expert at configuring and executing webhooks and event-driven actions, which are crucial for keeping your API in sync with external systems.Key LearningsUse Bruno CLI via npm for simplified installation and guarantees an up-to-date API management toolkit.Create clear API blueprints for designing and building robust endpoints.Integrate JWT authentication for secure API access while supporting scalable, stateless user management practices.Integrate OAuth 2.0 for fine-grained authorization, and to control access to sensitive API resources.Implement secrets management via environment variables to protect credentials and maintains secure configuration.Implement automated test suites to validate API functionality across all endpoints.Carry out real-time debugging and logging of API interactions during live operations.Write custom automation scripts to streamline testing, deployment, and data management across API workflows.Integrate with third-party services like Jira, GitHub, Jenkins, and AWS.Work around webhooks and event-driven actions to respond real-time events.Table of ContentGetting Started with BrunoStructuring API ProjectDesigning API ProjectBuilding API with Bru LangTesting API FunctionalitiesImplementing SecurityDebugging and Optimizing APIsAutomating API TasksAdvanced Integration and Services
Adversary Emulation with Mitre Att&ck
By incorporating cyber threat intelligence, adversary emulation provides a form of cybersecurity assessment that mimics advanced persistent threat (APT) tactics, techniques, and procedures (TTPs). This comprehensive guide introduces an empirical approach with strategies and processes collected over a decade of experience in the cybersecurity field. You'll learn to assess resilience against coordinated and stealthy threat actors capable of harming an organization. Author Drinor Selmanaj demonstrates adversary emulation for offensive operators and defenders using practical examples and exercises that actively model adversary behavior. Each emulation plan includes different hands-on scenarios, such as smash-and-grab or slow-and-deliberate. This book uses the MITRE ATT&CK knowledge base as a foundation to describe and categorize TTPs based on real-world observations and provides a common language that's standardized and accessible to everyone. You'll learn how to: Map cyber threat intelligence to ATT&CK Define adversary emulation goals and objectives Research adversary emulation TTPs using the ATT&CK knowledge base Plan and conduct adversary emulation and communicate your findings Automate adversary emulation to support repeatable testing Execute FIN6, APT3, and APT29 emulation plans
