Applied Incident Response
0
Free
Applied Incident Response is a comprehensive guide to incident response, providing effective techniques for responding to advanced attacks against local and remote network resources. The book covers preparing the environment for incident response, leveraging MITRE ATT&CK and threat intelligence, triage of systems, acquiring and analyzing RAM and disk images, log analysis, malware analysis, detecting lateral movement techniques, threat hunting, and adversary emulation. The book is a valuable resource for incident responders, providing a framework for applying incident response techniques and staying ahead of adversaries. Topics covered include: * Preparing the environment for incident response * Leveraging MITRE ATT&CK and threat intelligence * Local and remote triage of systems * Acquiring and analyzing RAM and disk images * Log analysis and aggregating high-value logs * Malware analysis * Detecting and responding to lateral movement techniques * Threat hunting and adversary emulation
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
A cybersecurity challenge where you play the role of an incident response consultant investigating an intrusion at Precision Widgets of North Dakota.
Free
A comprehensive guide to Nessus, a vulnerability scanner, covering data directories, binary directories, logs directories, plugin directories, advanced settings, API, and good practices.
Free
Coursera offers free online learning resources and courses during the COVID-19 pandemic.
Free
An article in Phrack Magazine discussing the creation of shellcode for StrongARM/Linux architecture.
Free
Learn about 'Admin Free' Active Directory and the significance of privileged groups in AD.
Free
Security cheatsheets to aid penetration testers and security enthusiasts in remembering useful but not frequently used commands.
Free
A comprehensive guide to Python 3 syntax, features, and resources in a single image.
Free
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security