Cyber Defense: Category - Blue Team

Your SIEM Questions Answered

by Justin Henderson and Ismael Valenzuela As SANS prepares for the inauguralSIEM & Tactical Analytics Summit, Co-Chairs Justin Henderson and Ismael Valenzuela are tackling some of the common questions they get from security professionals who are looking to use their Security Information and Event Management (SIEM) platform as a high-impact security tool. If you are … Continue reading Your SIEM Questions Answered


Top 7 Reasons to Attend the SANS SIEM Summit

1. Content Inspired - No SIEM Required SIEMs are quickly becoming a priority across industries as organizations look for improved methods and new strategies to safeguard against breaches and attacks. The SIEM and Tactical Analytics Summit was inspired by SANS new cyber detection course, SEC555. Like the course, this summit is focused on catching … Continue reading Top 7 Reasons to Attend the SANS SIEM Summit


PowerShell MD5 Hash Integrity Verifier To Detect File System Changes

Use PowerShell Get-FileHash and a public domain script to efficiently detect changes to the file system. Continue reading PowerShell MD5 Hash Integrity Verifier To Detect File System Changes


Windows Firewall Script To Block IP Addresses And Country Network Ranges

Script to import IP addresses and network ranges into the Windows Firewall to block or drop unwanted packets, such as from attackers and unwanted countries. Continue reading Windows Firewall Script To Block IP Addresses And Country Network Ranges


Blue Team Defender Guide (Capture The Flag Cheat Sheet)

Blue Team Defender Quick Guide for Surviving War Games (for both Linux and Windows). Continue reading Blue Team Defender Guide (Capture The Flag Cheat Sheet)