Browsing author
Many technologies and protocols can have impacts on security monitoring. Access Control Lists (ACLs) are among these technologies. ACLs can give a false sense of security if they are overly relied upon. ACLs, and packet filtering in general, are technologies that contribute to an evolving set of network security […]
Alert data consists of messages generated by intrusion prevention systems (IPSs) or intrusion detection systems (IDSs) in response to traffic that violates a rule or matches the signature of a known exploit. A network IDS (NIDS), such as Snort, comes configured with rules for known exploits. Alerts are generated by […]
As previously discussed, host-based intrusion detection systems (HIDS) run on individual hosts. HIDS not only detects intrusions but in the form of host-based firewalls, which can also prevent intrusion. This software creates logs and stores them on the host. This can make it difficult to get a view of what […]
The tcpdump command-line tool is a very popular packet analyzer. It can display packet captures in real-time or write packet captures to a file. It captures detailed packet protocol and content data. Wireshark is a GUI built on tcpdump functionality. The structure of tcpdump captures varies depending on the protocol […]
Use Of Security Onion As A Source Of Alerts Security Onion is an open-source suite of Network Security Monitoring (NSM) tools that run on an Ubuntu Linux distribution. Security Onion tools provide three core functions for the cybersecurity analyst: full packet capture and data types, network-based and host-based intrusion […]
The threat landscape is constantly changing as new vulnerabilities are discovered and new threats evolve. As a user and organizational needs change, so also does the attack surface. Threat actors have learned how to quickly vary the features of their exploits in order to evade detection. This article talks about […]
A typical network has a multitude of different logs to keep track of and most of those logs are in different formats. With huge amounts of disparate data, how is it possible to get an overview of network operations while also getting a sense of subtle anomalies or changes […]
The primary duty of a cybersecurity analyst is the verification of security alerts. Depending on the organization, the tools used to do this will vary. For example, a ticketing system may be used to manage task assignments and documentation. In Security Onion, the first place that a cybersecurity analyst […]
Now that you have investigated and identified valid alerts, what do you do with the evidence? The cybersecurity analyst will inevitably uncover evidence of criminal activity. In order to protect the organization and to prevent cybercrime, it is necessary to identify threat actors, report them to the appropriate […]
The Cyber Killer Chain was developed by Lockheed Martin to identify and prevent cyber intrusions. There are seven steps to the Cyber Kill Chain. Focusing on these steps helps analysts understand the techniques, tools, and procedures of threat actors. When responding to a security incident, the objective is […]
The Diamond Model of Intrusion Analysis is made up of four parts, as shown in the figure. The model represents a security incident or event. In the Diamond Model, an event is a time-bound activity that is restricted to a specific step in which an adversary uses a capability […]
Incident Response involves the methods, policies, and procedures that are used by an organization to respond to a cyber attack. The aims of incident response are to limit the impact of the attack, assess the damage caused, and implement recovery procedures. Because of the potential large-scale loss of property […]
With the Covid 19 pandemic ravaging the country, more and more businesses have had to shift online. While many businesses struggle to get their feet off the ground in the online sphere, organizations that help in IT training and obtaining ethical hacker certification have been around the block. […]
As a journalist in 2021, the dangers you face are ever-increasing. Without the proper protection from online threats, you risk hackers stealing confidential information, exposing your sources, breaking anonymity, and getting hold of your unpublished stories. You’d be a prime victim for blackmail — or worse. Some of […]
In my previous article, I have talked about some of the facts that you need to know about Digital Marketing generally. In this article, I want to talk about some of the facts that you need to know about Online Advertising. Before I will do that, I would like […]
One of the most important prerequisites for successful blogging is planning. If you approach blogging with a detailed strategy, this will help you guide your actions and activities when creating, managing, and promoting your blog. With blogging strategy, you design a plan of where you are and where […]
There is a list of things to think about before you are ready to start blogging. These include blogging essentials, i.e., everything you will need to set up and create a blog. Having a list like this one is very helpful to keep everything organized from the beginning and […]
Email marketing has the highest conversion rate of all types of online marketing. When you combine it with affiliate marketing, you can get a very profitable strategy to boost the performance of affiliate marketing. Merchants Merchants often use email marketing to get in touch with affiliates. It is a […]
You’ve got your e-commerce website set up, and you know how to drive traffic to it, but are still stuck with low sales. How do you fix that? By using online conversion techniques, also known as optimization techniques, you can increase your sales by focusing on the visitors coming […]
Please note that inaccurate time estimates will affect the schedule and may frustrate to e team involved in meeting the schedule. By minimising potential adjustments to the schedule, you and other stakeholders will not have to work overtime and you can preserve your reputation as a project manager. […]