Collaborate Disseminate
It has generally been thought that electric eels are purely solitary animals, which stalk prey on their own. Now, however, scientists have described seeing the creatures hunting in packs – which only nine other fish species are known to do.Continue Rea… Continue reading Not-so-solitary electric eels observed hunting in packs
In our experience touring German RV shows like CMT and Abenteuer & Allrad, German pickup campers and adventure rigs tend to be built on Toyota Hiluxes and Land Cruisers, VW Amaroks, Ford Rangers and even Mercedes X-Classes. We haven’t noticed many Mits… Continue reading Mitsubishi creates inflatable pickup camper for outdoors lovers
John Strand and Matt Alderman will discuss Threat Hunting. Full Show Notes Visit https://securityweekly.com/esw for all the latest episodes! Hosts Announcements Register for our upcoming webcasts with Viavi & ISC2 by going to securityweekly.com… Continue reading Threat Hunting – Enterprise Security Weekly #144
My training submission has been accepted at the BruCON Spring Training session in April 2019. This training is intended for Blue Team members and system/security engineers who would like to take advantage of the OSSEC integration capabilities with other tools and increase the visibility of their infrastructure behaviour. OSSEC is sometimes described as
[The post “Hunting with OSSEC” at BruCON Spring Training has been first published on /dev/random]
Continue reading “Hunting with OSSEC” at BruCON Spring Training
In response to my post More on Threat Hunting, Rob Lee asked:[D]o you consider detection through ID’ing/“matching” TTPs not hunting?To answer this question, we must begin by clarifying “TTPs.” Most readers know TTPs to mean tactics, techniques and proc… Continue reading Even More on Threat Hunting
Earlier this week hellor00t asked via Twitter:Where would you place your security researchers/hunt team?I replied:For me, “hunt” is just a form of detection. I don’t see the need to build a “hunt” team. IR teams detect intruders using two major modes: … Continue reading More on Threat Hunting
A judge has overturned a controversial decision by the Trump administration to remove federal protections from Yellowstone’s iconic grizzly bears. Continue reading Yellowstone’s Grizzly Bears Reinstated as Endangered Species, Judge Rules
I published the following diary on isc.sans.edu: “Hunting for Suspicious Processes with OSSEC“: Here is a quick example of how OSSEC can be helpful to perform threat hunting. OSSEC is a free security monitoring tool/log management platform which has many features related to detecting malicious activity on a live system like the
[The post [SANS ISC] Hunting for Suspicious Processes with OSSEC has been first published on /dev/random]
Continue reading [SANS ISC] Hunting for Suspicious Processes with OSSEC
I’m proud to have been selected to give a training at DeepSec (Vienna, Austria) in November: “Hunting with OSSEC“. This training is intended for Blue Team members and system/security engineers who would like to take advantage of the OSSEC integration capabilities with other tools and increase the visibility of their infrastructure behaviour.
[The post Training Announce: “Hunting with OSSEC” has been first published on /dev/random]
I published the following diary on isc.sans.org: “Are Your Hunting Rules Still Working?“: You are working in an organization which implemented good security practices: log events are collected then indexed by a nice powerful tool. The next step is usually to enrich this (huge) amount of data with external sources. You
[The post [SANS ISC] Are Your Hunting Rules Still Working? has been first published on /dev/random]
Continue reading [SANS ISC] Are Your Hunting Rules Still Working?