CYB3RSN0RLAX
Twitter
GitHub
Linkedin
Searchโฆ
About Cyb3rSn0rlax
๐ก๏ธ SOC Engineering
๐ง
Building an Open SIEM From Scratch
1. Introduction to Elastic Stack
2. Installing OpenDistro for Elasticsearch Plugins
3. Installing ElastAlert
4. ELK Stack: "L" is for Lord of the Stack
5. Alerting in ELK
6. Building Detection Rules
7. Metrics Reports & Dashboards
๐ก
A Primer to Detection Engineering Dimensions in a SOC Universe
๐บ
GitHub Projects
ELK4QRadar
Automating ELK Health Check
๐พ
DFIR
DFIR-01 : $MFT
DFIR-02 : Journal Forensics
DFIR-03: RDP Authentication Artifacts
โข๏ธ DEATH : Detection Engineering And Threat Hunting
๐
TA0006 : Credential Access
๐ฆ
TA0008 : Lateral Movement
๐
Misc
Infosec Game-Sense
Powered By
GitBook
7. Metrics Reports & Dashboards
In progress...
Previous
6. Building Detection Rules
Next
A Primer to Detection Engineering Dimensions in a SOC Universe
Last modified
9mo ago
Copy link