Logs
Part 2: Your Security Operations Cheat Sheet for Cloud Logs (And How to Tie Them to the MITRE ATT&CK Framework)
Cloud adoption is growing at astonishing rates, and more than 90 percent of organizations are now operating a multi-cloud strategy.... The post Part 2: Your Security Operations Cheat Sheet for Cloud Logs ...
Your Security Operations Cheat Sheet for Windows and Linux Logs (And How to Tie Them to the MITRE ATT&CK Framework)
Within the security operations center, visibility is everything. Being aware of the details of users, assets, known threats, and specific... The post Your Security Operations Cheat Sheet for Windows and Linux Logs ...
Improving Cybersecurity With MITRE ATT&CK Framework
In my previous blog posts, I’ve talked about the NIST CSF and another framework from the nonprofit Center for Internet Security (CIS), which has a smaller set of controls to help companies ...
A Return to Logs to Unjam the Security Deficit
Some years ago, during the renaissance of security information and event management (SIEM), security became log crazy. The hope was that by gathering logs from networking and security devices and running them ...
Modern SIEM Mysteries
Look outside, we are in 2020 (can anybody really forget that?). So, we are not in 2002 anymore (perhaps the birth year of modern-ish SIEM), neither are we in 2012…So, depending on ...
SIEM Implementation Strategies
A SIEM or Security Information and Event Management is only as good as its logs. People can think of logs as the fuel for the engine. Without logs (log management), the SIEM ...
Deception Technologies: Deceiving the Attacker or the Buyer?
Deception technologies, over the last three-ish years, have come into vogue; with more than a dozen commercial vendors and close to a hundred open source products available to choose from. Solutions range ...
