X

You can join MEGA, the most secure cloud storage, with this referral link: https://mega.nz/aff=7Y94iYz_csg

  • Home
  • Recent Posts
  • InfoSec News
  • Information Technology
    • InfoSec
      • Cybersecurity
      • SIEM
        • SIEM 100 series
        • SIEM 200 series
      • DFIR
      • Pentest
    • TL;DR;
  • Personal
  • Follow
  • Follow
  • Follow

SIEM 102 — Detect WordPress bruteforce

by Tristan Dostaler | Jan 19, 2021 | Cybersecurity, Information Technology, InfoSec, SIEM, SIEM 100 series

WordPress is one of the most popular CMS and website server in the world. It handles “more than 30%” of the websites on the internet. Because of this, bad actors are really interested in finding ways to get control of them. In this post I explain how to detect a WordPress bruteforve.

SIEM 101 — Basic usage

by Tristan Dostaler | Nov 26, 2020 | Cybersecurity, Information Technology, InfoSec, SIEM, SIEM 100 series

In this post I’ll explain the basics on using a SIEM: how to search logs and how to send alerts.

SIEM 201 — What is Sysmon

by Tristan Dostaler | Nov 25, 2020 | Cybersecurity, Information Technology, InfoSec, SIEM, SIEM 200 series, TL;DR;

In this post I’ll explain what is Sysmon, how to install it and how to use it to detect important pattern.

SIEM 102 — Detect Windows bruteforce

by Tristan Dostaler | Nov 25, 2020 | Cybersecurity, Information Technology, InfoSec, SIEM, SIEM 100 series

When we have a lot of Windows machine in our environment, it can be useful to be able to detect a bruteforce on a machine.

SIEM 201 — Detecting remote PsExec

by Tristan Dostaler | Nov 24, 2020 | Cybersecurity, DFIR, Information Technology, InfoSec, SIEM, SIEM 200 series

In this post I’ll explain how to detect an attacker that uses PsExec to connect to your computer when you don’t have visibility over the attacker’s computer.

SIEM 101 — Initial setup

by Tristan Dostaler | Nov 24, 2020 | Cybersecurity, Information Technology, InfoSec, SIEM, SIEM 100 series, TL;DR;

In this post, I’ll explain how to initially setup a SIEM so you can receive your first logs.

Never receive an alert from Windows Defender? You should!

by Tristan Dostaler | Nov 23, 2020 | Cybersecurity, Information Technology, InfoSec, Pentest, Personal, SIEM

The fact that we didn’t know Defender blocked an attack and we only learned it when we receive the report should be considered a disaster!

SIEM 101 — Introduction

by Tristan Dostaler | Nov 23, 2020 | Cybersecurity, Information Technology, InfoSec, SIEM, SIEM 100 series

In the following days, I’ll write a few blog posts explaining how to easily learn to use a SIEM.

Your server is secure? Really?

by Tristan Dostaler | Nov 23, 2020 | Cybersecurity, Information Technology, InfoSec, SIEM

You’ve hardened all you could on your servers or computers, and think your secure? Think again!

MEGA referal

You can join MEGA, the most secure cloud storage, with this referral link: https://mega.nz/aff=7Y94iYz_csg

Recent Posts

  • Weekly cybersecurity news – April 18, 2021
  • Weekly cybersecurity news – April 11, 2021
  • Why MEGA is my favorite cloud storage provider
  • Weekly cybersecurity news – April 4, 2021
  • Where to start in Cybersecurity for new comers

Subscribe!

Consider donating

Follow Me

  • Twitter
  • LinkedIn
  • RSS Feed

MEGA referal

You can join MEGA, the most secure cloud storage, with this referral link: https://mega.nz/aff=7Y94iYz_csg

Archives

  • April 2021
  • March 2021
  • February 2021
  • January 2021
  • December 2020
  • November 2020

Follow Me

  • Twitter
  • LinkedIn
  • RSS Feed

Categories

  • Coding
  • Cybersecurity
  • DFIR
  • Hack
  • Information Technology
  • InfoSec
  • InfoSec Architecture
  • InfoSec News
  • Pentest
  • Personal
  • SIEM
  • SIEM 100 series
  • SIEM 200 series
  • TL;DR;
  • Travel
  • Whoami

Recent Posts

  • Weekly cybersecurity news – April 18, 2021
  • Weekly cybersecurity news – April 11, 2021
  • Why MEGA is my favorite cloud storage provider
  • Weekly cybersecurity news – April 4, 2021
  • Where to start in Cybersecurity for new comers
  • The Elasticsearch license saga
  • An overview of a good InfoSec Strategy
  • SIEM 102 — Detect WordPress bruteforce
  • Zero Trust Architecture – What it is and what I think of it
  • Why the SolarWinds hack matters
  • Information Security synonyms
  • SIEM 101 — Basic usage
  • SIEM 201 — What is Sysmon
  • SIEM 102 — Detect Windows bruteforce

Subscribe!

Consider donating

  • Privacy Policy
Go to mobile version