March 4

Webinar Takeaway: Your Free and Open Source EDR Options!

0  comments

My key takeaways

  • carbon black was one of the first vendors as "black box flight recorder"
  • mitr uses cobalt strike and power… to simulate attacks
  • Good comparison: https://attackevals.mitre-engenuity.org/enterprise/evaluations.html?round=APT29
  • container security: Wazuh can inspect docker containers, carbon black was working with VMware, not docker or kubernetes
  • to start a hunt in velociraptor, hit the play button

Env

additional links


Tags

EDR


You may also like

Lessons from Sun Tzu’s “The Art of War” in Cybersecurity: Timeless Wisdom or Outdated Tactics?

Lessons from Sun Tzu’s “The Art of War” in Cybersecurity: Timeless Wisdom or Outdated Tactics?

Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity

Ransomware Resilience Starts in the Mind: Overcoming Cognitive Biases and Decision-Making Errors in Cybersecurity
Leave a Reply

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit markiert.

{"email":"Email address invalid","url":"Website address invalid","required":"Required field missing"}