Intrusion Prevention System(IPS) and Its Detailed Function – SOC/SIEM – A Detailed Guide
Like an intrusion detection system (IDS), an intrusion prevention system (IPS) screens network traffic. An Intrusion Prevention System (IPS) is a framework that screens a network for evil exercises, for example, security dangers or policy compliance.
Vulnerability exploits normally come...
Indicator Of Attack(IoA’s) And Activities – SOC/SIEM – A Detailed Explanation
What is an Indicator of Attack (IOA)
IoAs is some events that could reveal an active attack before indicators of compromise become visible. Use of IoAs provides a way to shift from reactive cleanup/recovery to a proactive mode, where attackers...
SOC Third Defense Phase – Understanding Your Organization Assets
In our first phase, we have seen the basic defense mechanisms which was recommended in organizations.
In our second phase, we have seen the understanding and the importance of the behaviors of modern-day malware to...
Intrusion Detection System (IDS) and Its Detailed Working Function – SOC/SIEM
An intrusion detection system (IDS) is a type of security software designed to automatically alert administrators when someone or something is trying to compromise information system through malicious activities such as DDOS Attacks or through security policy...
SOC First Defense phase – Understanding the Attack Chain – A Basic Defense approach...
This article will help you to understand the modern cyber threats and the most commonly used attack surfaces behind any malware/cyber-attacks. In most times, the cyber attacks are getting executed in stages. So the SOC team must...
