Google Cloud Incident Response Cheat Sheet Logo

Google Cloud Incident Response Cheat Sheet

0
Free
Visit Website

Google Cloud Platform Forensics provides a comprehensive overview of incident response in GCP, including logs for threat hunting and incident response, log analysis, and admin console cloud logging. It involves understanding existing infrastructure and investigating malicious activity derived from control plane activity. The tool provides five categories of forensic data, including alerts, logs, configurations, reports, and service data, and utilizes GCP native tooling such as Security Command Center, Logs Explorer, BigQuery, Metrics Explorer, Policy Analyzer, and Asset Inventory. The tool tracks various logs, including Admin, User, OAuth, SAML, Groups, and Security logs, which can be used for threat hunting and incident response. These logs provide valuable insights into API calls, user events, and configuration changes, enabling effective incident response and threat hunting in GCP environments.

FEATURES

ALTERNATIVES

A university course focused on vulnerability research, reverse engineering, and binary exploitation to teach practical offensive security skills.

Practical security handbook for .NET developers.

Comprehensive security training platform for web developers, offering hands-on experience with real, vulnerable applications and concrete advice for securing code.

Free cyber security training and resources for career development.

Platform offering cybersecurity courses for Red, Blue, and Purple Teamers by Picus.

A wargame that challenges your hacking skills

NodeGoat provides an environment to learn and address OWASP Top 10 security risks in Node.js web applications.

FARA is a repository of purposefully erroneous Yara rules for training security analysts.

PINNED