Discussion List

• 
  Minimum Threshold for Malicious Flags on VirusTotal

  egrizzly 252 views 1 comment 0 points Most recent by JDMurray July 2023
• 
  WeChat.exe Showing Up As Malware? Thoughts?

  egrizzly 137 views 1 comment 0 points Most recent by JDMurray May 2023
• 
  Thoughts on Tines - codeless SOAR tool

  egrizzly 77 views 3 comments 0 points Most recent by JDMurray April 2023
• 
  Who Has Installed CrowdStrike? Question on "Medium" Severity Detections

  egrizzly 84 views 2 comments 0 points Most recent by JDMurray April 2023
• 
  Who Has Installed and Used CrowdStrike Falcon?

  egrizzly 50 views 0 comments 0 points Started by egrizzly April 2023
• 
  SPLUNK ES vs SPLUNK

  egrizzly 738 views 3 comments 0 points Most recent by JDMurray March 2023
• 
  Best Solution For Controlling New Application Install In Custom Software Environments

  egrizzly 31 views 0 comments 0 points Started by egrizzly December 2022
• 
  Chrome.exe Alerts

  egrizzly 103 views 3 comments 0 points Most recent by JDMurray September 2022
• 
  Community Support For CrowdStrike

  egrizzly 86 views 2 comments 0 points Most recent by egrizzly August 2022
• 
  Typical EDR Reports Created For Management

  egrizzly 262 views 5 comments 0 points Most recent by chrisone August 2022
• 
  Migrating From CylancePROTECT to an EDR solution (e.g. Crowdstrike or Carbon Black)

  egrizzly 90 views 3 comments 0 points Most recent by egrizzly July 2022
• 
  2022 Verizon Data Breach Investigations Report (DBIR)

  JDMurray 84 views 0 comments 2 points Started by JDMurray May 2022
• 
  Review of SOC Core Skills training by Antisyphon InfoSec

  JDMurray 2.4K views 4 comments 3 points Most recent by chrisone April 2022
• 
  elearnsecurity labs for THP and IHRP

  mohamed194 351 views 9 comments 0 points Most recent by chrisone July 2021
• 
  Sony Entertainment Pictures 2014

  aesso 31 views 0 comments 1 point Started by aesso May 2021
• 
  Whitlisting Files vs Safelisting Users: Which is Best Practice and Why?

  egrizzly 92 views 7 comments 0 points Most recent by UnixGuy May 2021
• 
  OneNote vs Sharepoint. Which Is Easiest For Creating Playbook?

  egrizzly 174 views 5 comments 0 points Most recent by JDMurray March 2021
• 
  Interview Question: How Would You Move Through KillChain? How Would You Defend It?

  egrizzly 773 views 2 comments 0 points Most recent by egrizzly March 2021
• 
  Azure Sentinel use cases

  E Double U 111 views 1 comment 0 points Most recent by chrisone March 2021
• 
  Incident Response Frameworks

  egrizzly 93 views 0 comments 0 points Started by egrizzly March 2021
• 
  SPLUNK Enterprise Security: What's The Best Online Resource To Learn Implementation/Configuration?

  egrizzly 167 views 9 comments 0 points Most recent by egrizzly February 2021
• 
  Defanging IP Addresses 10[.]10.10.1

  egrizzly 432 views 11 comments 0 points Most recent by yoba222 January 2021
• 
  SolarWinds incident response: Live demo from the trenches

  Infosec_Sam 62 views 0 comments 1 point Started by Infosec_Sam December 2020
• 
  Use of open-source software for the IR needs

  Answered ✓ Info_Sec_Wannabe 111 views 5 comments 0 points Most recent by stryder144 December 2020
• 
  IPS Security Incident Response Process

  cjthedj45 659 views 3 comments 0 points Most recent by egrizzly December 2020
• 
  Incident Response Business?

  Cyberscum 760 views 16 comments 0 points Most recent by egrizzly December 2020
• 
  Any Reason Not To Block Malicious IPs?

  egrizzly 726 views 11 comments 0 points Most recent by LonerVamp June 2020
• 
  How Can You Tell If A SQL Injection Attack Is Successful

  egrizzly 2.4K views 11 comments 0 points Most recent by JDMurray May 2020
• 
  SIEM Alerting on Successful Logins From Outside Domains

  egrizzly 83 views 1 comment 0 points Most recent by si20 May 2020
• 
  Incident Response/Incident Management

  ps.89 164 views 4 comments 0 points Most recent by ps.89 May 2019