Let′s spy on malicious hackers!
#4n6strider

Let′s spy on malicious hackers!

Jindrich Karasek Jindrich Karasek

Jindrich Karasek

Cyber Threat & Defence Research, AI & Cognitive Security, DFIR, speaker, mentor, TI Associate, Views are my own.

发布日期: 2017年1月19日
+ 关注

Lets spy on malicious hackers! On my website: https://4n6strider.it I reveal the hypothetical structure of a SIEM, Security Information and Events Management tool.

For this study, I have constructed real – life dataset. Structure is based on my experience, but does not reflect any real deployment.

Its complexity depicts middle size global company. Data in this mock-up are constructed as it was collected in all continents and processed in the middle Europe.

Article has two parts. First is dedicated to using of SIEM. Second part s oriented more to maintenance of SIEM itself.

Miroslav M?ourek

If you want to change the world ... start off by making your bed.

8 年

Interesting ... good work!
回复
1 次回应
Michal Meravy

Incident Response and Digital Forensics Expert

8 年

Very nice article, thank you for sharing!
回复
2 次回应
查看更多评论

要查看或添加评论,请登录

Jindrich Karasek的更多文章

  • Enhancing Defenses Against Cognitive Warfare through Cyber Threat Hunting, OSINT, and Ethical Hacking
    2024年4月9日

    Enhancing Defenses Against Cognitive Warfare through Cyber Threat Hunting, OSINT, and Ethical Hacking

    {Consider this text as my public research notes, that I am building on while doing presentations, case studies, spot…

    2 条评论
  • A phishing story
    2017年12月13日

    A phishing story

    Phishing threat is still valid and it remains the most prevalent way how the attacker get into the enterprise…

  • Election manipulation
    2017年7月25日

    Election manipulation

    Introductory picture {Picture 0} below shows grouped website scan of Government of the Country. Various websites…

    1 条评论
  • RansomWare data mining
    2017年6月23日

    RansomWare data mining

    Recently, I did small research regarding how many different ransomware is found in the wild. Point was to check, if…

  • Penetration test of Mobile devices WiFi
    2017年2月6日

    Penetration test of Mobile devices WiFi

    Do you have a cellphone always connected to the internet? Do you connect to every public WiFi available? In article…

  • Knowledge Management
    2016年12月7日

    Knowledge Management

    The training is crucial part of every company' s security policy. There is an analysis below of a "Knowledge…

    1 条评论
  • Nmap on Twitter
    2016年9月12日

    Nmap on Twitter

    This is only small post, an appetizer generated during processing, I will add more details in future on my website…

    2 条评论
  • A Botnet was using DNS tunneling for its C&C operations
    2016年4月30日

    A Botnet was using DNS tunneling for its C&C operations

    Another great example of contribution of big data analysis to IT Security operations. Data were collected by using a…

    2 条评论
  • My own social network - hackers would love to do this.
    2016年4月24日

    My own social network - hackers would love to do this.

    One of the good use cases for so called "big data" approach is modeling of private social network. Same of course…

  • IT Security meets Data Science
    2016年4月9日

    IT Security meets Data Science

    Quote: The purpose of abstraction: “Is not to be vague but to create a new semantic level on which one can be…

社区洞察

其他会员也浏览了