Reducing security risks with centralized logging https://opensource.com/article/19/2/reducing-security-risks-centralized-logging
Jerry, what did you do to scope out the equipment you used? I've got Google Wifi, which is fine, but the lack of ability for custom VLANs and the incompatibility for my PiHole (can't get to individual devices without some crazy hacks I don't want to do) is causing me to want to switch to another system. They've got tons of gear, so I don't want to overspend.
Got a chance to tell a story on #DarknetDiaries with Jack Rhysider.
Ep 36: Jeremy from Marketing
"A company hires a penetration tester to pose as a new hire, Jeremy from Marketing, to see how much he can hack into in his first week on the job. It doesn’t go as planned."
You can listen to it here: https://darknetdiaries.com/episode/36/
Defensive Security Podcast Episode 235
Post-Exploitation Hunting with ATT&CK & Elastic https://www.sans.org/cyber-security-summit/archives/file/summit-archive-1533071345.pdf
Interactive MITRE ATT&CK Navigator http://mitre.github.io/attack-navigator/enterprise (referenced from https://infosec.exchange/@superruserr/101872146055869466) #blueteam #infosec #mitre
@darkskysblue I'm glad you enjoyed listening! Be sure to share with friends so that even more people can discover it! 🙂
@ddench I'm EDT right now (damn daylight savings!), so UTC-4.
@darrenpmeyer Yes, you're right. Re-reading the article and I agree - the survey results are more generic (insider threats are a real thing) but that doesn't mean that we blame the end users! People need to do their jobs, not be blamed for your lack of controls. There's enough we can do to protect the org without anyone even noticing. This author is the ass I want us all to avoid becoming.
@ddench Oooo! That actually looks better than I expected! 😄
@ddench It's been a long day and I chose to interpret that article literally. ;-)
This one drives me nuts:
I have worked with a few people who shared this opinion, and the answer is always the same. If you need to blame the end user, then you're not doing the job right. When I developed software, I was a fan of ensuring basic controls to avoid problems. I was often overruled in favour of more knobs, etc, to turn, which in turn caused problems. This is just more of the same. Don't blame end users, take pride in your own damn work!
@darkskysblue Happy to hear that you found it useful. It's a tough road at times and it took me a while to come to terms with it as it were, but I'm happier for it. I think the fact that we're willing to spread our wings further is what makes us that much more valuable.