Blue Team Handbook Incident Response Edition
Blue Team Handbook Incident Response Edition
Download as pdf or txt
At a glance
Powered by AI
The document provides an overview of the incident response process including preparation, identification, containment, eradication, recovery and lessons learned. It also discusses various tools, techniques and artifacts for investigating security incidents on windows and linux systems.
The six steps of incident response are: preparation, identification, containment, eradication, recovery and lessons learned.
Tools mentioned for network assessment include Nmap, Masscan, Wireshark and tcpdump. Nmap and Masscan can be used to scan networks to identify active hosts and open ports. Wireshark and tcpdump can be used to capture and analyze network traffic.
You might also like
- Metasploitable Pentest Report AssignmentDocument39 pagesMetasploitable Pentest Report Assignmentpatricktina06No ratings yet
- CEH v11 Exam Cheat SheetDocument86 pagesCEH v11 Exam Cheat SheetPREZZI PREZZINo ratings yet
- Wazuh-Elastic Stack Training: Deck 1Document66 pagesWazuh-Elastic Stack Training: Deck 1Eric Martinez100% (2)
- OSCP Cheat SheetDocument10 pagesOSCP Cheat SheetMarcia Méndez100% (2)
- SIEMonster 4.6 Community Edition Administrator Guide-V1.1.-20210810 - UbuntuDocument253 pagesSIEMonster 4.6 Community Edition Administrator Guide-V1.1.-20210810 - UbuntutembelizatNo ratings yet
- Offensive Security: Penetration Test Report For Internal Lab and ExamDocument14 pagesOffensive Security: Penetration Test Report For Internal Lab and ExamAshish Bhangale50% (2)
- Svmpc1: Installation ManualDocument8 pagesSvmpc1: Installation Manuallucio ruiz jrNo ratings yet
- WeAccess Revised Exhibit 11 - Resetting of Password User ID Activation Unlocking v.2Document1 pageWeAccess Revised Exhibit 11 - Resetting of Password User ID Activation Unlocking v.2April Rose AlagosNo ratings yet
- The WAZUH Open Source Security PlatformDocument3 pagesThe WAZUH Open Source Security PlatformYeshigeta Emishaw100% (1)
- Hunting and Investigation - Documentation - Support - Falcon PDFDocument67 pagesHunting and Investigation - Documentation - Support - Falcon PDFjymmy dextreNo ratings yet
- PEN-200 Lab ReportDocument8 pagesPEN-200 Lab ReportSilver UchihaNo ratings yet
- CEH Lab Setup Prerequisites and Instructions: Computer RequirementsDocument9 pagesCEH Lab Setup Prerequisites and Instructions: Computer Requirementssushainkapoor photo67% (3)
- Incident Response For BeginnersDocument15 pagesIncident Response For BeginnersNikolas KyriakidisNo ratings yet
- Passing OSCP With 100 Points in 12 Hours in First Attempt With Oscp Preparation Guide, 2021Document47 pagesPassing OSCP With 100 Points in 12 Hours in First Attempt With Oscp Preparation Guide, 2021somethng100% (1)
- A Nice OSCP Cheat SheetDocument12 pagesA Nice OSCP Cheat Sheetdss77750% (2)
- Training Slide Deck 3Document21 pagesTraining Slide Deck 3Eric MartinezNo ratings yet
- Hunt Evil Practical Guide Threat Hunting3Document38 pagesHunt Evil Practical Guide Threat Hunting3mohan100% (1)
- Kali Linux Penetration TestingDocument17 pagesKali Linux Penetration TestingDenise Mangold67% (3)
- Crack Wifi Password Using Aircrack-Ng (Beginner's Guide)Document1 pageCrack Wifi Password Using Aircrack-Ng (Beginner's Guide)Maria Inez Yudanti100% (1)
- Syllabus THPv1Document10 pagesSyllabus THPv1alexNo ratings yet
- OSCP Training - 01Document105 pagesOSCP Training - 01fa1c0n king100% (2)
- Nessus-Nmap Lab: IST 451 - Network SecurityDocument6 pagesNessus-Nmap Lab: IST 451 - Network SecurityCool AamanNo ratings yet
- CCSK Cheat Sheet Notes From Study LabsDocument2 pagesCCSK Cheat Sheet Notes From Study LabsexperioNo ratings yet
- Passing OSCP PDFDocument15 pagesPassing OSCP PDFlnejem.alwarek100% (2)
- Ainsworth PDFDocument5 pagesAinsworth PDFJhonattan Valencia100% (3)
- OSCP Exam ResportDocument11 pagesOSCP Exam ResportGerardNo ratings yet
- Offensive Security: Penetration Test Report For OSCP ExamDocument17 pagesOffensive Security: Penetration Test Report For OSCP ExamBlack BoxNo ratings yet
- AlienVault Incident Response GuideDocument48 pagesAlienVault Incident Response GuideMohamadFadiNo ratings yet
- Incident Handling - Step by StepDocument27 pagesIncident Handling - Step by Stepapi-27281066100% (1)
- © 2020 Caendra Inc. - Hera For PTX - Red-Teaming Active Directory Lab #2 (Els - Bank)Document49 pages© 2020 Caendra Inc. - Hera For PTX - Red-Teaming Active Directory Lab #2 (Els - Bank)Saw GyiNo ratings yet
- OSCP Preparation Guide at InfosectrainDocument22 pagesOSCP Preparation Guide at InfosectrainInfosec train100% (3)
- Offensive Security PDFDocument21 pagesOffensive Security PDFhariom bansiwalNo ratings yet
- CTF Capture The FlagDocument91 pagesCTF Capture The Flagwovixo5231No ratings yet
- OSCP Methodology - Dropbox PaperDocument15 pagesOSCP Methodology - Dropbox PaperWiraki AhemadNo ratings yet
- Building Next Gen SOC-20pDocument20 pagesBuilding Next Gen SOC-20psasuke Chibi100% (2)
- Advanced Skills For Network Penetration TestersDocument4 pagesAdvanced Skills For Network Penetration TestersJPChan50% (4)
- ADocument9 pagesAworkmumbai3870No ratings yet
- Malware Incident ResponseDocument6 pagesMalware Incident Responsectbaby1No ratings yet
- Common TCP Port Cheat SheetDocument1 pageCommon TCP Port Cheat SheetSteven Swafford100% (2)
- CEH v12 Lesson 9 - Exploiting Wireless VulneraDocument18 pagesCEH v12 Lesson 9 - Exploiting Wireless VulneraAbhay Jain100% (1)
- Packet Analysis With Wireshark - Sample ChapterDocument12 pagesPacket Analysis With Wireshark - Sample ChapterPackt Publishing100% (1)
- Oscp ScheduleDocument10 pagesOscp ScheduleAzaz Ahmed DobiwalaNo ratings yet
- Offensive Security: Penetration Test Report For Internal Lab and ExamDocument12 pagesOffensive Security: Penetration Test Report For Internal Lab and Examnobuyuki100% (1)
- CEH Practical Exam Experience 2021 - by Mehuljain - MediumDocument6 pagesCEH Practical Exam Experience 2021 - by Mehuljain - Mediumproton infosecNo ratings yet
- SnortDocument361 pagesSnortramven85No ratings yet
- Advanced Pentesting Techniques With MetasploitDocument51 pagesAdvanced Pentesting Techniques With MetasploitGustavo Sánchez100% (2)
- Advance Penetration Testing Kali Linux TrainingDocument4 pagesAdvance Penetration Testing Kali Linux TrainingReccio0% (1)
- Networking For Offensive Security TCPDocument87 pagesNetworking For Offensive Security TCPlefreak1979100% (2)
- Cyber Red TeamDocument49 pagesCyber Red TeamLalo LandaNo ratings yet
- CTF Series - Vulnerable MachinesDocument153 pagesCTF Series - Vulnerable MachinesPhạm Đình Thảo100% (1)
- HTB Detailed Writeup EnglishDocument87 pagesHTB Detailed Writeup EnglishEzio AuditoreNo ratings yet
- Defender PDFDocument124 pagesDefender PDFassadasdNo ratings yet
- Guide To OSCP in 2021Document1 pageGuide To OSCP in 2021Gabriel Murillo LanziNo ratings yet
- ADVERSARY EMULATION MATRIX by JoasDocument1 pageADVERSARY EMULATION MATRIX by JoasMD. MAHABUB RANA SAIKATNo ratings yet
- Guide To SIEMDocument13 pagesGuide To SIEMForense OrlandoNo ratings yet
- Hunt Evil Practical Guide Threat Hunting PDFDocument39 pagesHunt Evil Practical Guide Threat Hunting PDFzdravkoNo ratings yet
- Mitre Getting Started With Attack October 2019 PDFDocument45 pagesMitre Getting Started With Attack October 2019 PDFVic A. NietoNo ratings yet
- Hunting Red Team Activities With Forensic ArtifactsDocument34 pagesHunting Red Team Activities With Forensic ArtifactsMarius Iulian RosuNo ratings yet
- Penetration Tester Assessment WorksheetDocument2 pagesPenetration Tester Assessment Worksheetaatif2001No ratings yet
- IT2301 2markDocument10 pagesIT2301 2marksampathaboNo ratings yet
- Detection of Fake Profiles in Social Media: Literature ReviewDocument7 pagesDetection of Fake Profiles in Social Media: Literature ReviewRicha GargNo ratings yet
- Nmap CommandDocument11 pagesNmap Commandiffishah170No ratings yet
- Assembly bscs5 QuizDocument3 pagesAssembly bscs5 QuizMutiullahJamil0% (2)
- Computer Science Sample Paper 2Document2 pagesComputer Science Sample Paper 2shlok patelNo ratings yet
- Quiz Type ImagingDocument12 pagesQuiz Type Imagingjessamae.bucad.cvtNo ratings yet
- Manual Railduino v1.3 Update 14112016 enDocument23 pagesManual Railduino v1.3 Update 14112016 enAngelo DottoreNo ratings yet
- VR Usability Testing Capstone PaperDocument15 pagesVR Usability Testing Capstone Paperapi-488063825No ratings yet
- ESN100 BrochureDocument2 pagesESN100 BrochureZafar YabNo ratings yet
- 6 CountersDocument61 pages6 CountersRJ AdepuNo ratings yet
- 2021 2023 Syllabus UpdateDocument2 pages2021 2023 Syllabus UpdateNimbus ictNo ratings yet
- LogDocument241 pagesLogtatiane guimaraesNo ratings yet
- Watson4 RusDocument100 pagesWatson4 RusAz IdNo ratings yet
- Full Download HTML5 and CSS Complete 7th Edition Woods Test Bank All Chapter 2024 PDFDocument37 pagesFull Download HTML5 and CSS Complete 7th Edition Woods Test Bank All Chapter 2024 PDFhansenlejan100% (15)
- GFK-2222AX - PACSystems CPU Ref ManDocument323 pagesGFK-2222AX - PACSystems CPU Ref ManJulian FerreiraNo ratings yet
- WWW Mobilephonespy007 Com PDFDocument3 pagesWWW Mobilephonespy007 Com PDFredblogsNo ratings yet
- Capstone DoKonsulta Pagandahan Diestro Cifra 3rd RoutingDocument10 pagesCapstone DoKonsulta Pagandahan Diestro Cifra 3rd RoutingAlleyNo ratings yet
- PSP-JPCSP: Minimum System RequirementsDocument3 pagesPSP-JPCSP: Minimum System RequirementsRed VaderNo ratings yet
- Chromium OS TestingDocument8 pagesChromium OS TestingHaytam El HarrakNo ratings yet
- Versamax Nano and Micro: New Expansion UnitsDocument6 pagesVersamax Nano and Micro: New Expansion UnitsOvidiu GavrilasNo ratings yet
- Vikrant ChaudhariDocument2 pagesVikrant Chaudharicvikrant.online9020No ratings yet
- Dlms-Network V 1.0: Digital Load Measurement SystemDocument16 pagesDlms-Network V 1.0: Digital Load Measurement SystemEli QuispeNo ratings yet
- Project CRISP: Ess /mssDocument30 pagesProject CRISP: Ess /msspawang422100% (1)
- Control Structure-Repetition: Using Decrement or IncrementDocument19 pagesControl Structure-Repetition: Using Decrement or IncrementSky FireNo ratings yet
- ISA 5-1 Instrumentation Symbols and IdentificationDocument16 pagesISA 5-1 Instrumentation Symbols and IdentificationKrishna KalyanNo ratings yet
- Lab 5 & 6 - CSSDocument17 pagesLab 5 & 6 - CSSAsad AkhlaqNo ratings yet
- 10 Flutter App Development Interview Questions and AnswersDocument13 pages10 Flutter App Development Interview Questions and Answersabdulrahmanfouad549No ratings yet