Google Cloud Incident Response Cheat Sheet Logo

Google Cloud Incident Response Cheat Sheet

0
Free
Visit Website

Google Cloud Platform Forensics provides a comprehensive overview of incident response in GCP, including logs for threat hunting and incident response, log analysis, and admin console cloud logging. It involves understanding existing infrastructure and investigating malicious activity derived from control plane activity. The tool provides five categories of forensic data, including alerts, logs, configurations, reports, and service data, and utilizes GCP native tooling such as Security Command Center, Logs Explorer, BigQuery, Metrics Explorer, Policy Analyzer, and Asset Inventory. The tool tracks various logs, including Admin, User, OAuth, SAML, Groups, and Security logs, which can be used for threat hunting and incident response. These logs provide valuable insights into API calls, user events, and configuration changes, enabling effective incident response and threat hunting in GCP environments.

FEATURES

ALTERNATIVES

A detailed SSH cheat sheet for managing SSH connections and troubleshooting common issues.

Linux-based operating system intentionally vulnerable for cybersecurity practice.

ENISA Training Resources offers online training material for cybersecurity specialists, covering technical and artefact analysis fundamentals.

Solve password-riddles on a website without logins or ads.

A comprehensive list of search filters for the SHODAN search engine.

A comprehensive cybersecurity resource for learning and education

Cybersecurity training platform with courses, certifications, and study guides.

A comprehensive guide to Python 3 syntax, features, and resources in a single image.

PINNED