Forwards windows events to Splunk.
-
Updated
May 8, 2023
Forwards windows events to Splunk.
I worked on a Red Team vs Blue Team scenario in which i played the role of both penetration tester and SOC analyst.
A collection of sources of documentation, as well as field best practices, to build/run a SOC
A script to that checks for active connections to known malicious foreign IP addresses.
Elastic Stack SIEM Configuration And Management
Utilizes the VirusTotal API v3 to scan files for potential malware or suspicious behavior and send alert in Telegram.
Setting Up Wazuh SIEM/XDR Homelab and Integration of Microsoft Defender into it.
All About Me.
Project focused on advanced threat detection and response.
Built a mini HoneyNet in Azure and ingest log sources from various resources into a Log Analytics workspace
Information Security, Risk mgmt. and Forensics.
SOCIMP: design, build, implement and become a SOC Analyst in a foundational Security Operation Center enviroment.
🛡️ Master the essentials of SOC/Security Analysis with our 12-day SOC Analyst Prerequisites Learning Path, covering Linux, Windows, networking, scripting, and penetration testing—your key to a solid foundation in information security. 🚀
The repository is a valuable resource for individuals looking to enhance their knowledge and skills in cybersecurity. It provides in-depth materials and guides for various cybersecurity domains.
Useful resources for SOC Analyst and SOC Analyst candidates.
Add a description, image, and links to the soc-analyst topic page so that developers can more easily learn about it.
To associate your repository with the soc-analyst topic, visit your repo's landing page and select "manage topics."