Blue Team Handbook: Incident Response Edition: A condensed field guide for the Cyber Security Incident Responder
0
Free
The Blue Team Handbook is a condensed field guide for cyber security incident responders, security engineers, and InfoSec professionals. It covers essential information on incident response processes, attacker tactics, common tools, network analysis, indicators of compromise, and more. The book is designed to share real-life experience and provide practical techniques for handling incidents. The handbook includes topics such as: - Incident response process - How attackers work - Common tools for incident response - Methodology for network analysis - Indicators of compromise - Windows and Linux analysis processes - Tcpdump usage examples - Snort IDS usage - Packet headers The updated version 2.2 includes a new chapter on Indicators of Compromise, revised table formats, and dozens of updated and expanded paragraphs.
FEATURES
The author has not provided features for this tool yet. If you are the author, please sign in or claim the tool to add features by clicking the icon above.
ALTERNATIVES
A game packed with real-life examples of how not to store secrets in software, with 46 challenges to solve.
Free
A comprehensive guide to Nessus, a vulnerability scanner, covering data directories, binary directories, logs directories, plugin directories, advanced settings, API, and good practices.
Free
Linux-based operating system intentionally vulnerable for cybersecurity practice.
Free
A practical guide to developing a comprehensive security monitoring and incident response strategy, covering incident response fundamentals, threat analysis, and data analysis.
Free
Enhance the security and privacy of Apple silicon Mac computers with incremental changes and user capability.
Free
Boston Key Party CTF 2013 - cybersecurity competition with challenges in various domains.
Free
Curated list of acronyms and terms related to cyber security landscape with explanations beyond buzzwords.
Free
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Commercial
Vulnerability Management
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security