Skip to content
Home
About Us
Contact Us
Register to apply for a free CISO2CISO Membership
CISO2CISO Network
CISO2CISO Services
Sitemap
Submit News
Twitter
Linkedin-in
Youtube
Rss
CISO2CISO Notepad Series
SOC -CSIRT – Incidents & Attacks Notepad
Vendors & – MSSP Ecosystem
Cybersecurity Latest News
User Private Area
Login
Register – Create Account Member
Account
LATEST NEWS
05
/
05
:
2:00 pm
:
End-to-end encryption may be the bane of cops, but they can’t close that Pandora’s Box – Source: go.theregister.com
05
/
05
:
12:00 pm
:
GenAI Continues to Dominate CIO and CISO Conversations – Source: securityboulevard.com
05
/
05
:
12:00 pm
:
RSAC 2024 Innovation Sandbox | Reality Defender: Deepfake Detection Platform – Source: securityboulevard.com
05
/
05
:
12:00 pm
:
USENIX Security ’23 – Silent Bugs Matter: A Study of Compiler-Introduced Security Bugs – Source: securityboulevard.com
05
/
05
:
12:00 pm
:
RSAC 2024 Innovation Sandbox | Dropzone AI: Automated Investigation and Security Operations – Source: securityboulevard.com
05
/
05
:
12:00 pm
:
DD2345 Military Critical Technical Data Agreement and CMMC – Source: securityboulevard.com
05
/
05
:
3:00 am
:
Iranian hackers pose as journalists to push backdoor malware – Source: www.bleepingcomputer.com
05
/
05
:
3:00 am
:
Android bug leaks DNS queries even when VPN kill switch is enabled – Source: www.bleepingcomputer.com
05
/
05
:
2:00 am
:
Navigating the API Security Landscape: A CEO’s Perspective on Embedding Zero Trust Principles – Source: www.cyberdefensemagazine.com
05
/
04
:
9:00 pm
:
Blackbasta gang claimed responsibility for Synlab Italia attack – Source: securityaffairs.com
05
/
04
:
7:00 pm
:
Friday Squid Blogging: Squid Purses – Source: www.schneier.com
05
/
04
:
6:00 pm
:
Mimic Launches With New Ransomware Defense Platform – Source: www.darkreading.com
05
/
04
:
4:00 pm
:
Dating apps kiss’n’tell all sorts of sensitive personal info – Source: go.theregister.com
05
/
04
:
4:00 pm
:
Kaspersky hits back at claims its AI helped Russia develop military drone systems – Source: go.theregister.com
05
/
04
:
4:00 pm
:
Microsoft Outlook Flaw Exploited by Russia’s APT28 to Hack Czech, German Entities – Source:thehackernews.com
05
/
04
:
12:00 pm
:
The Real Risk is Not Knowing Your Real Risk: Perspectives from Asia Pacific Tour with EY – Source: securityboulevard.com
05
/
04
:
12:00 pm
:
Airsoft Data Breach Exposes Data of 75,000 Players – Source: securityboulevard.com
05
/
04
:
12:00 pm
:
Get SOAR Savvy Before RSAC 2024: 5 Reads to Level Up Your SOC – Source: securityboulevard.com
05
/
04
:
12:00 pm
:
Cloud Monitor Automation Thwarts Phishing & Malware Emails – Source: securityboulevard.com
05
/
04
:
12:00 pm
:
MY TAKE: Is Satya Nadella’s ‘Secure Future Initiative’ a deja vu of ‘Trustworthy Computing?’ – Source: securityboulevard.com
CISO STRATEGICS
CYBER ARCHITECTURE
SOC CSIRT OPERATIONS
CYBERSECURITY TOOLS
CYBERSECURITY VENDORS
CYBERSECURITY MSSP
CYBER ORGANIZATIONS
CYBER REGULATIONS
EVENTS & CONFERENCES
VULNs & ZERO DAYS
LATEST CYBER NEWS
The Register Security
End-to-end encryption may be the bane of cops, but they can’t close that Pandora’s Box...
The Register Security
Dating apps kiss’n’tell all sorts of sensitive personal info – Source: go.theregister.com
The Register Security
Kaspersky hits back at claims its AI helped Russia develop military drone systems – Source:...
The Hacker News
Microsoft Outlook Flaw Exploited by Russia’s APT28 to Hack Czech, German Entities – Source:thehackernews.com
Data Breach Today
How Intel 471’s Buy of Cyborg Is Reshaping Threat Hunting – Source: www.databreachtoday.com
Data Breach Today
Code to Cloud Roadshow – Tysons Corner In-Person Event hosted by Palo Alto Networks –...
Data Breach Today
Regulating AI: ‘It’s Going to Be a Madhouse’ – Source: www.databreachtoday.com
Data Breach Today
Web Trackers Persist in Healthcare Despite Privacy Risks – Source: www.databreachtoday.com
Data Breach Today
New Report Exposes Iranian Hacking Group’s Media Masquerade – Source: www.databreachtoday.com
Data Breach Today
Code to Cloud Roadshow – Atlanta In-Person Event hosted by Palo Alto Networks – Source:...
Data Breach Today
The Intelligent SOC: Fusion Methodology at the Intersection of Intelligence, Context, and Action in Modern...
Data Breach Today
New Botnet ‘Goldoon’ Targets D-Link Devices – Source: www.databreachtoday.com
CISO2CISO Editors' Picks
NCSC
NCSC Cyber Security for Small Business “SMEs” Guide.
NIST
Digital Forensics and Incident Response (DFIR) Framework for Operational...
help net security
Compliance does not equal security !!
HADESS
DevSecOps Guides – Comprehensive resource for integrating security into...
US Deparment of Defense
DevSecOps Fundamentals Guidebook – Tools & Activities by American...
SALT
State of the CISO – a global report on...
Unbound Security
The Cybersecurity Acronym Book
BUTTERWORTH-HEINEMANN
Security Operations Center Guidebook – A Practical Guide for...
Microsoft
Microsoft Zero Trust Maturity Model
WILEY
Cybercrime Investigators Handbook by WILEY
ACSC Australia
Personal Cyber Security First Steps by Australian Government –...
LOGPOINT
396 Use Cases & Siem Rules Code ready for...
National Cyber Security
Cyber Security Toolkit for Boards – Helping board members...
SANS
SANS Faculty Cybersecurity Free Tools – SANS Instructors have...
CISO
STRATEGICS
CISO Strategics
CISO Learn & Leadership
Cybersecurity for C-Levels
Cybersecurity Trends & Insights
Cyberseurity Awareness
Cybercrimen Ecosystem
Cybersecurity Measure & Metrics
Cybersecurity Frameworks
Cybersecurity Policy & Standars
Fraud
Information Security
Osint - Humint
Privacy
Risk & Compliance
Resilience
Social Engineering
Supply Chain Security
CYBER
ARCHITECTURE
API Security
Application Security
Blockchain Security
Cloud Security
Data Security
Defense in Depth
DevSecOps
Endpoint Security
IA Security
IOT Security
MAC-OS Security
Metaverse Security
Micro segmentation
Mitre Att&ck
Mobile & 5G Security
Network Security
OT Security
OWASP Security
Perimeter Security
SAP Security
Telco & Carrier Security
Zero Trust Security
SOC CSIRT
OPERATIONS
Cyber Incidents & Attacks Notepad
CSIRT Operations
Data Leak & Breach Incidents Notepad
DDOS Attacks
DFIR - Forensics & Incident Response
Dark & Deep Web
SOC Operations
SIEM Use Cases & Playbooks
SOAR Authomation & Playbooks
Malware & Ransomware
Red - Blue & Purple Teams Operations
Threat Intelligence
Threat Hunting
Vulnerabilities
CYBERSECURITY
TOOLS
Anti DDOS
AWS Security
CASB
DLP
DNS Security
EDR - MDR - XDR
Firewalls
Google GCP Security
Hacking Tools
IAM - Identity
IPS
MFA-2FA
MS Azure Security
MS Office 365 Security
SIEM
SDWAN
SOAR
VPNs - Remote Access
WAF
CYBER
ORGs
CCN-EU
CSA
CIS
CISA
DHS-US
ENISA
ISACA
INCIBE-EU
Mitre Att&ack
NSA
NIST Security
SANS
WEF
CYBER
ATTACKS
Cyber Incidents & Attacks Notepad
Data Leak & Breach Incidents Notepad
Crypto theft , stealing & attacks
DDOS Attacks
Mallware & Ransomware
Phising Attacks
Social Engineering
Supply Chain Attacks
BEC
CYBER
CONFERENCES
RSA Conference
Defcon
Blackhat
Cybertech
C1b3rwall
Ekoparty - Hispam
Segurinfo - Hispam
CYBER
REGULATIONS
PCI - DSS
ISO 27001
SOX
Latest Published Posts
NIS COOPERATION GROUP
Cybersecurity and resiliency of Europe’s communications infrastructures and networks
SEQRITE
DarkRace Ransomware
IGNITE Technologies
The Art of Data Exfiltration
CYTAD
DATA PRIVACY
DevSecOps Guide
DEFENDING APIS
CCISO
Conversational Server Access Security
Project Management Institute
Building Resilience Through Strategic Risk Management
CSA Cloud Security Alliance
How to Design a Secure Serverless Architecture
Detecting Brute Force Attacks
National Security Agency
CSI Cloud Top10 Key Management
CSA Cloud Security Alliance
Defining the Zero TrustProtect Surface
HANIM EKEN
CONTAINER SECURITY INTERVIEW QUESTIONS ANSWERS
CNIL
PRACTICE GUIDE GDPR – SECURITY OF PERSONAL DATA Version...
PWNED LABS
Cloud Security Engineer Roadmap
tutorialspoint.com
Cloud Computing Tutorial Simply Easy Learning
SMITHA SRIHARSHA
CISSP Preparation Notes
CISSP Mind Map: All Domains
Lansweeper
CIS 18 CRITICAL SECURITY CONTROLS CHECKLIST
CYBERSECURITY
VENDORS
Akamai
A10 Networks
Blackberry Cylance
Cisco
Cyberark
Cloudfare
Crowdstrike
Checkpoint
F5 Networks
FyreEye
Fortinet
Guardicore
IBM
Kaspersky
Mcafee - Trellix
Mandiant
Maltego
Microsoft
Netscope
Palo Alto Networks
RSA Security
Redhat
Splunk
Symantec
Tenable
Trendmicro
CYBERSECURITY
MSSP
Accenture
Attos
AT&T Cybersecurity
BT Security
BASE 4 - Hispam
Deloitte
Entelgy Security
KPMG
NTT Security
Novared - Hispam
Neosecure - Hispam
Orange Cyberdefense
PwC
Telefonica Tech
Thales
Verizon Security
CISO2CISO Editors' Picks
SALT
State of the CISO – a global report on...
SentinelOne
90 DAYS A CISO´s Journey to Impact define your...
HADESS
Introduction to Doxing- OSINT methods for information gathering by...
OCCUPYTHEWEB
Linux Basics for Hackers by Occupytheweb
Marcos Jaimovich
Cyber Threat “Info Stealer” explained in Simple way: A...
CISO Forum
CISO’s – First 100 Days Roadmap – Your success...
Elevate Security
High Risk Users and Where to Fin Them by...
Delinea
The Impact of Business Alignment on Cybersecurity Effectiveness –...
INCIBE & SPAIN GOVERNMENT
DIRECTOR MASTER PLAN OF SECURITY BY INCIBE & SPAIN...
Harvard Business Review
Boards Are Having the Wrong Conversations About Cybersecurity –...
Unbound Security
The Cybersecurity Acronym Book
Joas Antonio
100 Security Operation Tools for SOCs by Joas Antonio
LATEST CYBER NEWS
Data Breach Today
ISMG Editors: RSA Conference 2024 Preview – Source: www.databreachtoday.com
The Register Security
It may take decade to shore up software supply chain security, says infosec CEO –...
The Register Security
Europol op shutters 12 scam call centers and cuffs 21 suspected fraudsters – Source: go.theregister.com
The Register Security
Indonesia sneakily buys spyware, claims Amnesty International – Source: go.theregister.com
The Register Security
Chinese government website security is often worryingly bad, say Chinese researchers – Source: go.theregister.com
The Register Security
Microsoft, Google do a victory lap around passkeys – Source: go.theregister.com
The Register Security
Google cools on cookie phase-out while regulators chew on plans – Source: go.theregister.com
The Register Security
US charges Iranians with cyber snooping on government, companies – Source: go.theregister.com
The Register Security
If Britain is so bothered by China, why do these .gov.uk sites use Chinese ad...
The Register Security
Mandiant: Orgs are detecting cybercriminals faster than ever – Source: go.theregister.com
The Register Security
UnitedHealth admits IT security breach could ‘cover substantial proportion of people in America’ – Source:...
The Hacker News
Expert-Led Webinar – Uncovering Latest DDoS Tactics and Learn How to Fight Back – Source:thehackernews.com
Latest Published Posts
SMITHA SRIHARSHA
CISSP Preparation Notes
South East Technological University
Cybersecurity for Industrial Networks
CISSP Mind Map: All Domains
Centre for Cyber Security Belgium
CYBER SECURITY INCIDENT MANAGEMENT GUIDE
Lansweeper
CIS 18 CRITICAL SECURITY CONTROLS CHECKLIST
Europol
CYBER-ATTACKS: THE APEX OF CRIME AS A SERVICE
INCIDENT RESPONSE METHODOLOGIES
Shared Responsibility Model
KROLL
Cyber Risk and CFOs: Over-Confidence is Costly
fn Cyber
Cyber Kill Chain – A Comprehensive Overview
CYBER SECURITY COOPERATIVE RESEARCH CENTRE
Governing Through a Cyber Crisis
CUJOAI
CYBERSECURITY REPORT
Semaphore
CI-CD with Docker and Kubernetes
The Cyber Security Forum Initiative
THE CYBER SECURITY FORUM INITIATIVE
EC-MSP
BUSINESS CONTINUITY PLAN & DISASTER RECOVERY PLAN TEMPLATE
CHAINUP
Constructing a Robust Architecture for Digital Asset Trading Platforms
PWC
Building a risk-resilient organisation
IGNITE Technologies
Credential Dumping Applications
Accenture
THE NEXT-GENERATION Building a Digital Central Bankfor a Digital Age
FIRST Improving Security Together
Computer Security Incident Response Team (CSIRT)Services Framework
Thecyphere
Microsoft EntraID (Azure)ConditionalAccess
COMPUTER AND INFORMATION SECURITY
aws
AWS Security Incident Response Guide
Government of South Australian
South Australian Cyber Security Framework
IGNITE Technologies
A DETAILED GUIDE ON DIRBUSTER
NAO -National Audit Office
Audit and Risk Assurance Committee Effectiveness Tool
PWNED LABS
CLOUD SECURITY ENGINEER ROADMAP
WWW. D E V S E COP S G U I D E S . CO M
Attacking Docker
W W W . D E V S E C O P S G U I D E S . C O M
Attacking AWS – Offensive Security Aproach
ENISA
Artificial Intelligence and Cybersecurity Research 2023
MuleSoft
API Security Best Practices – Protect your APIs with Anypoint Platform
Green Circle
All about Security Operations Center
DAZZ
A Guide to Building a Secure SDLC – Which Scanning Tools Should I look at,...
zimperium
2023 Mobile Banking Heists Report
40 under 40
40 under 40 in CyberSecurity 2024
HADESS
40 Days in DeepDark Web About Crypto Scam
Everbridge
8 Principles of Supply Chain Risk Management
CHAOSSEARCH
Threat Hunter’s Handbook – Using Log Analytics to Find and Neutralize Hidden Threats in Your...
ENDGAME
The Hunters Handbook Endgame’s Guide to Adversary Hunting
THE EU’S MOST THREATENING by EUROPOL
National Cyber Security Centre
Responding to a cyber incident – a guide for CEOs
IGNITE Technologies
CREDENTIAL DUMPING
HADESS
Pwning the Domain Lateral Movement
NIST
Implementing the Health Insurance Portability and Accountability Act(HIPAA) Security Rule
NIST SPECIAL PUBLICATION 1800-22
Data Confidentiality: Identifying and Protecting Assets Against Data Breaches
Jorgen Lanesskog
PING Basic IP Network Troubleshooting
NIST CSF 2.0
The NIST Cybersecurity Framework (CSF) 2.0
TELESOFT
Layer 7 Visibility What are the Benefits?
TIGERA
Introduction to Kubernetes Networking and Security
Department of Defense's (DoD)
Defense Industrial Base Cybersecurity Strategy 2024
IGNITE Technologies
Nmap for Pentester – PORT STATE
Dummies
Zero Trust Access for Dummies Fortinet
Homeland Security
Zero Trust Implementation Strategy
National Australia Bank Limited
Your Business and Cyber Security
CYFIRMA
Xeno RAT- A New Remote Access Trojan
IGNITE Technologies
Windows Persistence COM Hijacking MITRE T1546 015
IGNITE Technologies
Windows Exploitation Rundll32
IGNITE Technologies
Windows Exploitation Msbuild
HADESS
Web LLM Attacks
HADESS
Trended Protocols for Security Stuff
Red Iberoamericana de Protección de Datos
Transferencia Internacional de Datos Personales – Guia de Implementación
CYFIRMA
TRACKING RANSOMWARE January 2024
CDPSE
NIST CSF 2.0: What has changed?
ICS Security Engineer
Industrial Control Systems: Engineering Foundations and Cyber-Physical Attack Lifecycle
CISO2CISO Editors' Picks
Fastercapital.com
How To Launch A Successful B2B Managed Security Services...
Chris Davis
Blue Team Cheat Sheets by Chris Davis
HADESS
Introduction to Doxing- OSINT methods for information gathering by...
Delinea
The Impact of Business Alignment on Cybersecurity Effectiveness –...
Joas Antonio
Security Operations Center (SOC) – Tools for Operations Development...
CISO2CISO Notepad Series
The sqreen DevSecOps Security Checklist
Tushar Subhra Dutta
Top 10 Cyber Attack Maps to See Digital Threats...
Codrut Andrei
Secure Software Development Lifecycle Fundamentals by Codrut Andrei
SANS
SANS Faculty Cybersecurity Free Tools – SANS Instructors have...
Think Big Blog
Top 10 TED Talks to Learn about Cyber Security
WILEY
Cybercrime Investigators Handbook by WILEY
CSA Cloud Security Alliance
Security Implications of ChatGPT RC by Cloud Security Alliance...
Nathalie Cole
How Much 10 Companies Paid Their Virtual CISO Service...
Joas Antonio
100 Security Operation Tools for SOCs by Joas Antonio
Marcos Jaimovich
Building a SECURE Minimum Viable Protection (SMVP) Product or...
Microsoft
Microsoft Zero Trust Maturity Model
SALT
State of the CISO – a global report on...
HADESS
Introduction to Doxing- OSINT methods for information gathering by...
FIRE EYE
The Cyber Risk Playbook – What boards of directors...
Elevate Security
High Risk Users and Where to Fin Them by...
Harvard Business Review
Boards Are Having the Wrong Conversations About Cybersecurity –...
Unbound Security
The Cybersecurity Acronym Book
CYBER LEADERSHIP INTITUTE
CISO PLAYBOOK: FIRST 100 DAYS Setting the CISO up...
Gartner
A CISOs Guide for Conversations with the CFO by...
Joas Antonio
ChatGPT for Cybersecurity by Joas Antonio dos Santos –...
NCSC
NCSC Cyber Security for Small Business “SMEs” Guide.
INCIBE & SPAIN GOVERNMENT
DIRECTOR MASTER PLAN OF SECURITY BY INCIBE & SPAIN...
Joas Antonio
Guide for Multi-Cloud Read Team AWS – GCP –...
RedHat
State of Kubernetes Security Report 2022 by RedHat
Practical DevSecOps
API Security Fundamentals – Your Handy Guide to Building...
Marcos Jaimovich
Why do we compare a SOC (Security Operations Center)...
Microsoft
Microsoft 365 and the NIST Cybersecurity Framework
Delinea
The Impact of Business Alignment on Cybersecurity Effectiveness –...
MITRE
11 STRATEGIES OF A WORLD-CLASS CYBERSECURITY OPERATIONS CENTERS HIGHLIGHTS...
Latest Published Posts
How SPF, DKIM, and DMARK work in your Email Flow
IBM
X-Force Threat Intelligence Index 2024
DRAGOS
How well do you know your OT assets?
Australian Goverment
Guide to securing personal information
protiviti
Guide to Enterprise Risk Management
National Cyber Security Centre
Guide to Cyber Security Measures
ANY RUN
Malware Analysis Guide
ACN
PAUTAS – FUNCIONES – CRIPTOGRÁFICO
CROWDSTRIKE
GLOBAL THREAT REPORT
Foresiet
Global Cybersecurity Trends
Incibe
Gestión de riesgos
VIEH GROUP
How to bypass Firewall
THOMSONREUTERS
FINTECH, REGTECH AND THE ROLE OF COMPLIANCE 2021
https://www.linkedin.com/in/harunseker/
TOP Cyber Attacks Detected by SIEM Solutions
TRAVARSA
Top 100 Cyber Threats and Solutions 2024
Top 50 Cybersecurity Threats
OWASP
Top 10 Considerations for Incident Response
EXECWEB
Tips for Cybersecurity Vendors to Connect with CISOs
WITH SECURE
Threat Landscape Report 2024
ThreatRadar
Threat Intel Roundup Phar SEO Poisoning ScreenConnect
ThreatRadar
Threat Intel Roundup Outlook, QNAP, Okta
ThreatRadar
Threat Intel Roundup Outlook SmartScreen Lockbit
ThreatRadar
Threat Intel Roundup FortiOS Super Bowl Chrome APT15
Microsoft
Network Security Groups
INFOSECTRAIN
Third Party Information Security Assessment Checklist
INFOSECTRAIN
THE ULTIMATE SOC – CAREER GUIDE FOR BEGINNERS
Waterfall Security Solutions LTD.
THE TOP 20 CYBERATTACKS on Industrial Control Systems
CSA Cloud Security Alliance
The State of SecurityRemediation 2024
THE LINUX FUNDATION
The Open Source Software Security Mobilization Plan by OpenSSF
HITRUST
The HITRUST Approach to NIST CSF 2.0
Gavin Phillips
The Deep and Dark Web Guide
The Computer and Information Security
Deloitte
The CISOs guide to Generative AI
Ahmed Medhat
Suspicious Traffic Detection and Analysis
INFOSECTRAIN
Third Party Information Security Assessment Checklist
INFOSECTRAIN
THE ULTIMATE SOC – CAREER GUIDE FOR BEGINNERS
Waterfall Security Solutions LTD.
THE TOP 20 CYBERATTACKS on Industrial Control Systems
CSA Cloud Security Alliance
The State of SecurityRemediation 2024
THE LINUX FUNDATION
The Open Source Software Security Mobilization Plan by OpenSSF
HITRUST
The HITRUST Approach to NIST CSF 2.0
Gavin Phillips
The Deep and Dark Web Guide
The Computer and Information Security
Deloitte
The CISOs guide to Generative AI
Ahmed Medhat
Suspicious Traffic Detection and Analysis
KPMG
Supply Chain Risk Management – A data driven approach to protecting your organization
Standford University
Rethinking Privacy in the AI Era Policy Provocations for a Data-Centric World
Orangeava
Ultimate SplunkforCybersecurity
Michael Tchuindjang
Splunk – SIEM Log Monitoring
Spam and Phishing Report for 2023
iExperts
SOC Audit Report Type1 Type2
Cybersecurity & Infrastructure Security Agency
Secure Cloud Business Applications
OAG
Security Basics for ProtectingCritical Infrastructure fromCyber Threats
InstaSafe
TIPS TOAVOID ROMANCE SCAMS
GISF
Securityto go: A Risk Management Toolkit for Humanitarianaid Agencies
COSO
R I S K A P P E T I T E –C R I...
ISACA
Reporting Cybersecurity Risk to the Board of Directors
Freddy Dezeure
Reporting Cyber Risk to Boards
Joas A Santos
Red Team Operations Concepts
Stellar
UNDERSTANDING CBDCS
National Cyber Security Centrum
Ransomware Incident Response Plan The incident response cycle, applied to ransomware
CCN
Gestión deincidentes de ransomware INFORME DE BUENAS PRÁCTICAS
CSO.IE
Public Sector Cyber Security Baseline Standards
Mark Settle
Privacy By Design:From Principles toRequirements
Netpoleon India
DemystifyingPublic KeyInfrastructure (PKI)& CertificateLifecycle Management
Users Most Viewed Posts
CLOUDSEK
Increased Cyber Attacks on the Global Health Sector by CloudSEK
Dutch Blockchain Coalition
Blockchain Security – A Framework for Trust and Adoption by Dutch Blockchain Coalition
DNSSENSE
DNS LAYER SECURITY from the MITRE ATT&CK Perspective whitepapper by DNSSense
Kaspersky
The Nature of cyber incidents – Based on cyberattack investigations conducted by Kaspersky Global Emergency...
LetsDefend
SIEM FOR BEGINNERS PREPARED FOR SOC TEAMS BY LETSDEFEND
CISA
Cloud Security Technical Reference Architecture
FUTURUM - SPLUNK
How to design your Security Operations Center (SOC) to work smarter, not harder.
CSA Cloud Security Alliance
SaaS Governance Best Practices Cloud by CSA Cloud Security Alliance
RANK
Threat Hunting Playbook – Learn how to embrace a proactive security posture by Rank.
Practical DevSecOps
You are probably doing DevSecOps Wrong by Practical DevSecOps – DevSecOps can seem like a...
Ministerio del Interior España
Guía sobre controles de seguridad en sistemas OT – Ministerio del Interior de España
BeyondTrust
2022 Microsoft Vulnerabilities Report by BeyondTrust (you must read).
Arizona State University
THE FUTURE OF CYBER ENABLED FINANCIAL CRIME – New Crimes, New Criminals, and Economic Warfare...
Incibe
Guía de ciberseguridad para todos by Incibe y Policia Nacional
Dell Technologies
5G Cybersecurity by Dell
CISO2CISO Notepad Series
GIR – The Guide to Cyber Investigations.
Michael Schearer
Shodan for Penetration Testers
HADESS
Attacked From Behind Application using RCE for Exploit Public-Facing Application case study
BOOZ ALLEN HAMILTON
Enabling 5G Security with Continuos Monitoring by Booz Allen Hamilton
SecurityHQ
A checklist for efective Threath Hunting by SecurityHQ
HADESS
40 Methods for Privilege Escalation P1 by Hadess
Kaspersky
The Nature of cyber incidents – Based on cyberattack investigations conducted by Kaspersky Global Emergency...
OWASP
Web Security Testing Guide by OWASP
IGNITE Technologies
RDP Penetration Testing by IGNITE Technologies
TOP Featured POSTS
UK Government
Detecting the Unknown – A Guide to Threat Hunting by UK Government
APPLIED INCIDENT RESPONSE
Windows Event Security Log Analysis
odaseva
The State of SaaS Ransomware Attack Preparedness – A survey of cloud data decision makers...
HADESS
Introduction to Doxing- OSINT methods for information gathering by HADESS
Cryptomeria Capital
The Metaverse Overview by Cryptomeria Capital – Vadim Krekotin
Hidecybersecurity.com
Social Engineering and its menace by Hidecybersecurity.com
European Commission
CYBER RESILIENCE ACT – New EU cybersecurity rules ensure more secure hardware and software products...
TACTICX
Offensive Microsoft Active Directory 101 – Security Holes Everywere by TACTICX – Active Directory Attack.
Wiley Brand for Dummies
API Security for Dummies Series – Data Theorem Special Edition
Microsoft Security
Microsoft Implements Brute Force Attack Protection for All Windows Versions – As of October 11th,...
CAREER UP
7 Steps to your Cybersecurity Career – How to begin your career in Cibersecurity By...
CIS
CIS Critical Security Controls Version 8 – Mapping to PCI Data Security Standar (PCI DSS)...
infosecn1nja
Active Directory Kill Chain – Attack and defend active directory using modern post exploitation adversary...
stottandmay.com
The CISO Survival Guide – Practical advice for Security Leaders by stottandmay.com
offs.ec
PEN-200 and the OSCP prep book by offs.ec
Google Cybersecurity Action Team
Modern Data Security – A path to autonomic data security by Dr. Anton Chuvakin and...
Practical DevSecOps
You are probably doing DevSecOps Wrong by Practical DevSecOps – DevSecOps can seem like a...
rpi
THE IoT LANDSCAPE – The next decade of the Internet of Things by rpi –...
Alejandro Corletti - Darfe.es
Libro Ciberseguridad – Una estrategia Informatica-Militar by Alejandro Corletti Estrada – darfE.es
Aristeidis Michail
Security Operations Center – A Business Perspective by Aristeidis Michail
Joas Antonio
100 Security Operation Tools for SOCs by Joas Antonio
Codrut Andrei
Secure Software Development Lifecycle Fundamentals by Codrut Andrei
Interpol
GUIDELINES FOR DIGITAL FORENSICS FIRST RESPONDERS BY INTERPOL
MALTEGO
Maltego handbook for Incident Response
Marcos Jaimovich
Presentación “ModoSOC in Real Life” por Marcos Jaimovich en SEGURINFO Chile 2022.
Packt
Guia de Implementacion y Estrategia de Azure cuarta edicion by Packt
Think Big Blog
Top 10 TED Talks to Learn about Cyber Security
CYFIRMA
ADVANCED SOCIAL ENGINEERING ATTACKS DECONSTRUCTED BY CFYRMA
Joas Antonio
Windows Persistence Techniques by Joas Antonio
Unbound Security
The Cybersecurity Acronym Book
expel
MITRE ATT&CK in Google Cloud Platform (GCP) – A defender’s cheat sheet by expel
HADESS
GITHUB IN THE WILD – Some examples of offensive security used github by HADESS
MANDIANT
Remediation and Hardering Strategies for Microsoft 365 to Defend Against APT29 Group – Threat Intelligence...
CSBS.ORG
Cybersecurity 101 – A Resource Guide for BANK EXECUTIVES – Executive Leadership of Cybersecurity
TRIMARC
10 WAYS TO IMPROVE AD SECURITY QUICKLY – list of widely applicable “easy” wins for...
help net security
Compliance does not equal security !!
HADESS
TALE OF PHIHING – Some Phishing Techniques & Awareness by HADESS.IO
ALEX SIDORENKO & ELENA DEMIDENKO
GUIDE TO EFFECTIVE RISK MANAGEMENT 3.0 – ALEX SIDORENKO – ELENA DEMIDENKO
BUTTERWORTH-HEINEMANN
Security Operations Center Guidebook – A Practical Guide for a Successful SOC
Microsoft
Microsoft Zero Trust Maturity Model