Cyber Defense

Your SIEM Questions Answered

by Justin Henderson and Ismael Valenzuela As SANS prepares for the inauguralSIEM & Tactical Analytics Summit, Co-Chairs Justin Henderson and Ismael Valenzuela are tackling some of the common questions they get from security professionals who are looking to use their Security Information and Event Management (SIEM) platform as a high-impact security tool. If you are … Continue reading Your SIEM Questions Answered


Top 7 Reasons to Attend the SANS SIEM Summit

1. Content Inspired - No SIEM Required SIEMs are quickly becoming a priority across industries as organizations look for improved methods and new strategies to safeguard against breaches and attacks. The SIEM and Tactical Analytics Summit was inspired by SANS new cyber detection course, SEC555. Like the course, this summit is focused on catching … Continue reading Top 7 Reasons to Attend the SANS SIEM Summit


Attend SEC505 in Denver (Oct 12, 2017) and get a free PowerShell book

Free PowerShell and DevOps books if you attend the Securing Windows and PowerShell Automation course (SEC505) in Denver, starting October 12, 2017. Continue reading Attend SEC505 in Denver (Oct 12, 2017) and get a free PowerShell book


PowerShell Script to Block Cortana for Privacy

A simple PowerShell script to disable Windows Cortana and block outbound Cortana-related network traffic, while still allowing Cortana to be used for local searches, such as for settings and apps. Continue reading PowerShell Script to Block Cortana for Privacy


PowerShell 7-Zip Module Versus Compress-Archive with Encryption

A free PowerShell module makes 7-Zip archives very easy to use, especially when encrypting 7z and Zip archives with 256-bit AES encryption. 7-Zip is much better than the built-in Compress-Archive and Expand-Archive cmdlets, and can be combined with KeePass. Continue reading PowerShell 7-Zip Module Versus Compress-Archive with Encryption