DigitalSentinel – Page 2 – Vigilance in Every Byte

Cybersecurity Exercise: Understanding and Applying the MITRE ATT&CK Framework

Cyber Defense, Enterprise Security, From School Master, MasterSchool, Security Operations / DigitalSentinel

Objective: The aim of this exercise is to familiarize students with the MITRE ATT&CK framework by analyzing various cybersecurity scenarios. By dissecting real-world-like attack narratives, you’ll learn how to identify Tactics, Techniques, and Procedures (TTPs) commonly used by attackers, particularly Advanced Persistent Threats (APTs). Duration: This is a 30-minute exercise broken down into four scenarios, […]

Cybersecurity Exercise: Understanding and Applying the MITRE ATT&CK Framework Read More »

Log Samples

Uncategorized / DigitalSentinel

In our journey to comprehend the diverse world of system logs, let’s delve into these samples extracted from different systems. These examples aim to offer a glimpse into the log entries you might encounter in various scenarios. It’s crucial to remember that log formats can undergo modifications as products evolve over time. Furthermore, it’s worth

Log Samples Read More »

Exploring Log Fields in Various Systems

Security Operations / DigitalSentinel

This post is a continuation of my ongoing post on Log Analysis. See the Initial post hereAnticipating the essential log fields for different systems can be a strategic advantage, offering a blueprint for effective investigations. By understanding the potential log data a system could produce, one gains a roadmap to navigate through the information landscape.

Exploring Log Fields in Various Systems Read More »

The Anatomy of Logs

Cyber Defense, From School Master, Security Operations / DigitalSentinel

Deciphering Logs: The Keystone Skill for Security Analysts In a conversation I had with a fellow network security expert in the spring of 2023, an observation struck me profoundly. He emphasized that among new job applicants and even experienced Gen X professionals, a deficiency in troubleshooting skills prevails. As an engineer, was trying to locate

The Anatomy of Logs Read More »

Unmasking Active Directory Threats: Defending the Heart of Enterprise IT

Cyber Defense, Enterprise Security, From School Master, MasterSchool / DigitalSentinel

Active Directory serves as the pulsating core of modern enterprise IT systems. It offers organizations the prowess to efficiently manage an array of IT components, ranging from laptops, desktops, and servers to mobile devices, network equipment, printers, and beyond—essentially, any entity tethered to the network. With the agility it brings, specifying device and user permissions

Unmasking Active Directory Threats: Defending the Heart of Enterprise IT Read More »

Balancing Caution and Creativity: Applying Six Thinking Hats to New Ideas

CyberSecurity Leadership / DigitalSentinel

I picked up Edward De Bono’s book Six Thinking Hats a few years ago. His book presents the idea of categorizing thinking into six categories or Hats. Categorizing Thinking: The Six Thinking Hats Approach Black Hat: Focuses on identifying potential problems, risks, and cautious aspects of an idea or solution. White Hat: Gathering data, information, and facts

Balancing Caution and Creativity: Applying Six Thinking Hats to New Ideas Read More »

HONEYTOKENS, using deception tactics to improve continuous security monitoring efforts – Enterprise Information Security

Cyber Defense, CyberSecurity Leadership, Enterprise Security, Security Operations / DigitalSentinel

Introduction Over the years, as information security teams, we have always been on the defense, forever waiting for the next security event before we can act. Although part of our strategy is to anticipate the adversary, we have not truly started to learn from the trends of the adversary to be prepared for the next

HONEYTOKENS, using deception tactics to improve continuous security monitoring efforts – Enterprise Information Security Read More »

Wireshark Tips and Tricks: Essential Filters and Combinations for Network Investigations

Master School Tips and Tricks, MasterSchool / DigitalSentinel

Welcome to the Wireshark Tips and Tricks table! In this comprehensive reference, we present the 20 most common filters used in Wireshark, arranged in ascending order of popularity. These filters serve as invaluable tools for efficient network traffic analysis, allowing you to gain insights into various protocols and security threats. Each filter comes with essential

Wireshark Tips and Tricks: Essential Filters and Combinations for Network Investigations Read More »

Network packets explained

From School Master, MasterSchool / DigitalSentinel

A network packet is a small unit of data transmitted over a computer network. It is the fundamental unit of data in network communication and plays a crucial role in delivering information between devices on the network. Think of a network packet as a digital envelope containing information to be sent from one device to

Network packets explained Read More »

What is Port Scanning and Why it Matters in Cyber Security

From School Master, MasterSchool / DigitalSentinel

Port scanning is the process of systematically checking all the ports on a computer or network device to determine which ones are open and which ones are closed. In simple terms, it’s like knocking on different doors of a building to see which ones someone can enter and which ones are locked. In the context

What is Port Scanning and Why it Matters in Cyber Security Read More »

Author name: DigitalSentinel