Replying to Avatar Ava

#cybersecgirl tool tip:

Wazuh is a free and open source security solution that offers unified SIEM and XDR protection across several platforms. It is used for threat detection, prevention, and response.

Use it to protect networks, virtualized environments, containers, and cloud environments.

#cybersecgirl #infosec #cybersecurity #privacytechpro #opensource #wazuh

https://www.bleepingcomputer.com/news/security/wazuh-building-robust-cybersecurity-architecture-with-open-source-tools/

Avatar
MalwareLab 1y ago

Yeah, Wazuh is great tool, it provides good visibility into your infrastructure. #Velociraptor is another example, but more useful for incident response and threat hunting in larger networks.

In top of that, network monitoring with IDS such as #suricata + ET Open signatures is useful addition especially for detect threats and anomalies originating from devices without wazuh installed. Analyzing traffic from IoT, guest laptops and smartphones and identification of all devices connected to the network is often very educative exercise.

Reply to this note

Please Login to reply.

Discussion

No replies yet.