blueteam

I’m curious what tools, SaaS, or other solutions are being used for vulnerability assessments?...

I’m not a vendor, I’m just curious what experience people have with implementing security control frameworks?...

I did a dive into what you can get out of the Edge (and probably Chrome(ium)) History sqlite database. It logs quite detailed data - useful for forensics!

Automated Audit Log Forensic Analysis (ALFA) for Google Workspace is a tool to acquire all Google Workspace audit logs and perform automated forensic analysis on the audit logs using statistics and the MITRE ATT&CK Cloud Framework....

The hacktivist group Anonymous Sudan claims to have breached Microsoft and stolen credentials from 30 million customers. Microsoft says they are lying. The group has done a lot of DDoS attacks, and claimed much bigger impact than they really have had. Exaggerated claims may lead to increased “panic state” at the top of the...

TL;DR: Is ISO27001 easy or am I just too dumb to see the complexity?...

I have found Excel to be quite useful for collecting data, doing summary analysis of logs, etc. I also liked this blog post from Mandiant, about using Excel to timeline artefacts with very different structure. It takes a bit of work using find, left, mid, right, concat, etc, but then it is quite useful! Another good thing is...

cross-posted from: infosec.pub/post/86834...

Hey everyone! Since we’re creating a new community here, I’d love to hear who’s here....

👋 Hello all! So, how big is your security organization and how are responsibilities split across teams?...

Whether you are a buyer of security services, or a provider of them, what metrics, visuals, information is actually important to customers? What is the preferred way to consume reports - emails, dashboards, PDF reports, chat bots, smoke signals? Any thoughts and inputs much appreciated!