Security+: Technologies And Tools – Firewall [DECOMMISSIONED ARTICLE]
Firewalls serve as a hardware or software component of an Information Technology environment that is deployed between a private trusted network (such...
Greg Belding
Greg is a Veteran IT Professional working in the Healthcare field. He enjoys Information Security, creating Information Defensive Strategy, and writing – both as a Cybersecurity Blogger as well as for fun.
Page 29
Threat Hunting for File Names as an IoC
Just like any good treasure hunt, you need a map or clues to be successful. Threat hunting is no different – Indicators of Compromise (IoC) can be used by...
Threat Hunting for URLs as an IoC
Unfortunately, cyber-attacks are just a fact of life in today’s world. Anyone with a laptop or smartphone can quickly write malicious code to victimize an...
Threat Hunting for Domains as an IOC
When threats are detected on a network, domains can serve as good indicators that the network is compromised. In many cases, this compromise could have been...
Threat Hunting and HTML Response Size
Imagine that you are sitting at your workstation at work and you notice that your environment is experiencing a higher than usual HTML response size coming...
Threat Hunting for Unusual Logon Activity
What is one of the first things that you think of when thinking of potential threat activity on your network? Most would probably say that there has been some...
Threat Hunting for Swells in Database Read Volume
When attackers have breached your network, one of the most common things they will be doing is looking into your systems that have sensitive data. This data...
Threat Hunting for Unusual DNS Requests
Searching for Unusual DNS Requests is a standard method for threat hunting. The presence of Unusual DNS Requests can often tip off Information Security professionals...
Threat Hunting for Anomalies in Privileged Account Activity
A tell-tale sign of your network being hacked is that a privileged account, such as a system administrator account, has been compromised. Attacks of this kind...
DESlock+ Encryption
Many laws and regulations require that to operate in compliance with federal and state standards, organizations have to encrypt computers that house sensitive...