Incident Response with Threat Intelligence
This book provides practical insights into developing an incident response capability through intelligence-based threat hunting. It covers theoretical concepts and real-life scenarios to help apply incident response concepts within an organization. The book explores the fundamentals of incident response, incident management, threat hunting, and threat intelligence using various platforms and tools. It covers topics such as developing incident response capabilities, creating incident response plans and playbooks, integrating cyber threat intelligence and threat hunting into incident response, and working with analytics and detection engineering in incident response. The book is suitable for information security professionals or anyone who wants to learn the principles of incident management, first response, threat hunting, and threat intelligence.
FEATURES
ALTERNATIVES
Comprehensive endpoint protection platform providing unified visibility and security for cloud workloads, endpoints, and containers.
A comprehensive list of search filters for the SHODAN search engine.
Hacker wargames site with forums and tutorials, fostering a learning community.
Korean cyber-security challenge platform for exploiting and defending web application vulnerabilities.
A comprehensive guide to investigating security incidents in popular cloud platforms, covering essential tools, logs, and techniques for cloud investigation and incident response.
ENISA Training Resources offers online training material for cybersecurity specialists, covering technical areas such as artefact handling and analysis.
A comprehensive guide to digital forensics and incident response, covering incident response frameworks, digital forensic techniques, and threat intelligence.
Level 400 training to become a Microsoft Sentinel Ninja.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.