Our current host...uhoffman wrote:
The methodology you outlined for incident response seems solid. Has it been tested against targeted attack?
ayalabonnie
Member
Joined:
December 21, 2022 01:31
Posts:
52
Threads Started by ayalabonnie
Recent Posts by ayalabonnie
The attack surface expanded significantly when we deployed workstations without proper security controls. We've documented the entire incident triage according to NIST for future reference....
Read more →
Please review the attached indicators and let me know if you've seen similar domain. Based on alerts per endpoint, the impact of this DDoS was high compared to standard config.
Read more →
Based on alerts per endpoint, the impact of this DDoS was low compared to expected traffic. This report will be submitted to IT for data exfiltration. I'll compile our findings into a incident...
Read more →
Has anyone successfully deployed the vendor's...jasonfrye wrote:
Can you elaborate on how AppInit DLLs helped in your specific situation?
I agree with...heatherbrooks wrote:
What tools are people using these days for threat hunting? Still ELK Stack or something else?