Tag feed

#blueteam

184 posts21 followers

Trending tags this week

Understanding Logs : The Backbone of Detection

18h ago · 9 min read · Understanding Cybersecurity Step by Step - Part 6 In Part 5, we followed Arjun through his morning shift. He opened 52 alerts. He triaged them one by one. He asked the same questions every time -what

Join discussion

TATaji Abdullahtechnofiles.hashnode.dev

0

Understanding Threat Hunting Initiation

12h ago · 2 min read · When I first learned about Threat Hunting, the biggest question I had was, how is the hypothesis formed, how do you come to the point of forming a hypothesis that serves as the basis for the threat hu

Join discussion

TLTirthak Likhartirthaklikhar.hashnode.dev

0

I Ran 9 MITRE ATT&CK Simulations Against My Own SIEM. Here Is What Actually Happened.

2d ago · 18 min read · Let me be upfront about something before we get into this. I did not build this lab because someone told me to. I built it because I kept running into a wall. Every job description I read for SOC anal

Join discussion

SSSakshi Singhthinksecure.hashnode.dev

0

What Does a SOC Analyst Actually Do?

6d ago · 8 min read · Understanding Cybersecurity Step by Step - Part 5 In Part 4, we walked through what happens after a cyber attack. The attacker moves. The server records it. SIEM spots the pattern. An alert fires. Bu

Join discussion

TATaji Abdullahtechnofiles.hashnode.dev

0

Home Lab Milestone Reached

Apr 15 · 3 min read · I've recently connected my Splunk instance to Gmail. This has pushed my home lab to another level. This opens up a few doors that I've been wanting to walk through and I'm proud of what I've built and

Join discussion

PPromisepromise-security.hashnode.dev

0

Anonymous but Not Invisible: A Simple Tor Lab With Shodan

Apr 11 · 4 min read · For beginners, most of the time its heard to use Tor to stay anonymous on the internet. But are you really anonymous? I’m running this lab inside a Kali Linux VM. I installed Tor and Tornet, then star

Join discussion

SSSakshi Singhthinksecure.hashnode.dev

0

What Happens After a Cyber Attack?

Apr 10 · 5 min read · We've talked about how hackers find vulnerabilities. But here's the question nobody asks first -what happens on the other side? Imagine this. It's 2 AM. A hacker just broke into a company's database

Join discussion

PPromisepromise-security.hashnode.dev

0

Using Splunk to Detect Financial Fraud: My Commonwealth Bank Cybersecurity Task

Apr 5 · 6 min read · As part of a virtual cybersecurity experience with Commonwealth Bank, I completed a hands‑on fraud detection task using Splunk. The goal was to analyse a synthetic transaction dataset, build a dashboa

Join discussion

PPromisepromise-security.hashnode.dev

0

Phishing to Ransomware: A Fictional Bank Incident and Response

Apr 5 · 4 min read · Background: Incident Timeline As a member of the cyber security division, your team must handle this incident and the team lead has assigned the issue to you. The timeline of events is: 10:30 a.m. –

Join discussion

VDVishesh Dutt Sharmasttudv.hashnode.dev

0

From Structure to Action

Apr 5 · 4 min read · There is a moment in every investigation where structure must become action. Logs exist. Alerts trigger. Systems behave in ways that demand explanation. The question is no longer what the framework re

Join discussion

#blueteam

Search Hashnode

#blueteam

Trending tags this week

Understanding Logs : The Backbone of Detection

Understanding Threat Hunting Initiation

I Ran 9 MITRE ATT&CK Simulations Against My Own SIEM. Here Is What Actually Happened.

What Does a SOC Analyst Actually Do?

Home Lab Milestone Reached

Anonymous but Not Invisible: A Simple Tor Lab With Shodan

What Happens After a Cyber Attack?

Using Splunk to Detect Financial Fraud: My Commonwealth Bank Cybersecurity Task

Phishing to Ransomware: A Fictional Bank Incident and Response

From Structure to Action