7MS #495: Desperately Seeking a Super SIEM for SMBs - Part 5
7 Minute Security17 Marras 2021

7MS #495: Desperately Seeking a Super SIEM for SMBs - Part 5

Today we continue our SIEM/SOC evaluation series with a closer look at one particular managed solution and how it fared (very well) against a very hostile environment: the Light Pentest LITE pentesting course! Spoiler alert: this solution was able to detect:

  • RDP from public IPs
  • Password spraying
  • Kerberoasting
  • Mimikatz
  • Recon net commands
  • Hash dumping
  • Hits on a "honey domain admin" account
  • Users with non-expiring passwords
  • Hits on the SSH/FTP/HTTP honeypot

Suosittua kategoriassa Politiikka ja uutiset

rss-ootsa-kuullut-tasta
aikalisa
tervo-halme
ootsa-kuullut-tasta-2
politiikan-puskaradio
rss-podme-livebox
et-sa-noin-voi-sanoo-esittaa
rss-vaalirankkurit-podcast
otetaan-yhdet
politbyroo
aihe
rikosmyytit
rss-terveisia-seelannista
radio-antro
rss-lets-talk-about-hair
rss-50100-podcast
rss-kuka-mina-olen
rss-sanna-ukkola-show-verkkouutiset
rss-tasta-on-kyse-ivan-puopolo-verkkouutiset