KQL | Blue Team Guides

Blue Team Guides

Red Team Guides Red Team Recipe DevSecOps Guides

Introduction
Preparation
Identify Scope
Protect Defend
Detect Visibility
Respond Analysis
Recover Remediate
Tactics Tips And Tricks
Incident Management Checklist
Security Incident-Identification Schema
Hardening
XDR
- Wazuh
Query Language
- KQL
- EQL
Events
- eventvwr
- Sysmon
Threat Intelligence
- Origin
- IOC
CSIRT
- Resources
Digital Forensic
- Resources
SOAR
- Workflow
Virtual Patching
- Modsecurity
Resources
Malware
- Sandbox
Scenario
- General
- Purple Teaming

Powered by GitBook