Applied Incident Response Logo

Applied Incident Response

0
Free
Visit Website

Applied Incident Response is a comprehensive guide to incident response, providing effective techniques for responding to advanced attacks against local and remote network resources. The book covers preparing the environment for incident response, leveraging MITRE ATT&CK and threat intelligence, triage of systems, acquiring and analyzing RAM and disk images, log analysis, malware analysis, detecting lateral movement techniques, threat hunting, and adversary emulation. The book is a valuable resource for incident responders, providing a framework for applying incident response techniques and staying ahead of adversaries. Topics covered include: * Preparing the environment for incident response * Leveraging MITRE ATT&CK and threat intelligence * Local and remote triage of systems * Acquiring and analyzing RAM and disk images * Log analysis and aggregating high-value logs * Malware analysis * Detecting and responding to lateral movement techniques * Threat hunting and adversary emulation

FEATURES

ALTERNATIVES

A practical guide to developing a comprehensive security monitoring and incident response strategy, covering incident response fundamentals, threat analysis, and data analysis.

Cybersecurity industry portal offering articles, tools, and resources.

An evolving how-to guide for securing a Linux server with detailed steps and explanations.

A blog post discussing the differences between Solaris Zones, BSD Jails, VMs, and containers, with the author arguing that containers are not a real thing.

Platform offering cybersecurity courses for Red, Blue, and Purple Teamers by Picus.

A website for information on Linux and BSD distributions.

A vulnerable web application for learning about web application vulnerabilities and writing secure code.

A non-profit organization providing live-fire cyber warfare ranges for training and up-skilling cybersecurity professionals.

PINNED