seb - buttons are toys! @seb@ioc.exchange

Started work on a Getting your first #cybersecurity job page… #iocwiki

https://ioc.wiki/career/firstjob

What do your standing agendas look like for your weekly #BlueTeam meetings?

Here is ours:
1. [5 – 15 min] Chatter
2. [5 min] SOC Escalations last 7d
3. [5 min] TI Updates
4. [5 min] New Detections & Procedures & Docs
5. [5 min] Dashboards/Reports
6. [5 – 25 min] Project Updates

#infosec #cybersecurity

Sergio Paul Caltagirone’s Master Thesis on Active Response: http://www.classstudio.com/papers/professional_papers/msthesis/sergioThesis.pdf
#infosec #cybersecurity

Remember when those Executives told us to think about how #cybersecurity can enable the business to be more flexible, innovative, and expand?

With all these ransomware incidents lately, this question has been answered…

…the answer is: You should have fucking listened to your #infosec experts!

This does not sound good...
#infosec #cybersecurity

https://www.bbc.com/news/world-us-canada-57703836

Paper on the Ethics of Hacking Back: http://ethics.calpoly.edu/hackingback.pdf #infosec #cybersecurity

Added cyber roles to the Career Corner - Anything I missed? #iocwiki #infosec #cybersecurity

https://ioc.wiki/career/start

Worked a bit on the #cybersecurity wiki tonight. Added a Protect section to the Blue Team KB.

https://ioc.wiki/doku.php?id=btkb:start#protect

Welcome to the four new users on #iocwiki - Let's create something useful for everyone!

Explained the concept of a DMZ to a junior team member today. Used the Zoom whiteboard and drew two countries with mutual/opposing borders. He got it right away.

What are #infosec concepts that you find yourself explaining to others? What cool analogies do you use?

Do you believe that there are more medical terms (patient zero) than military terms (DMZ) being used in #cybersecurity ?

Started a new project…

https://ioc.wiki

Thought the world needs an #infosec knowledge base that makes it easier for people to enter the #cybersecurity profession or advance their careers. We need more people to help keep computers safe.

Let me know, if you’d like to join the project and help!

Work in a E5 shop?

Check this out: https://www.microsoft.com/security/blog/2021/05/20/simuland-understand-adversary-tradecraft-and-improve-detection-strategies/

#infosec #cybersecurity

from birdsite…

#infosec #cybersecurity

Meeting and exchanging war stories with peers is an excellent exercise of identifying where folks got lucky with defending and what a proper process would look like to successfully defend even with bad luck. Grateful for our local community here in the Bay Area.

#cybersecurity #infosec #blueteam

We currently have two open cyber engineer positions - One in Ireland and one in US (HQ in SF Bay Area). DM me for more info!
#infosec #cybersecurity

Anyone willing to privately share experiences with inter org CTI sharing?

#infosec #cybersecurity

Is cyberspace burning a little hotter today or is it just me?

#infosec #cybersecurity

SANS - CISO mindmap

https://www.sans.org/security-resources/posters/ciso-mind-map-vulnerability-management-maturity-model/205/download

#cybersecurity #infosec

CIS Top20 in a nice format: https://controls-assessment-specification.readthedocs.io/en/latest/index.html
#cybersecurity #infosec

Anyone ever ran the Infection Monkey on an Enterprise scale network (10k+ hosts)?

https://www.guardicore.com/infectionmonkey/

#infosec #cybersecurity

First paper on HIDS ever: https://faculty.nps.edu/dedennin/publications/IDS%20model.pdf #cybersecurity #infosec #theory >