https://defensivedepth.com/2015/05/24/sysmon-security-onion-part-4-integrating-security-onion-and-sysmon/2024-12-06T12:40:31+00:00monthlyhttps://defensivedepth.com/2015/04/20/sysmon-security-onion-part-3-enterprise-security-monitoring/2024-12-06T12:40:31+00:00monthlyhttps://defensivedepth.com/2015/04/01/monitoring-key-windows-processes-for-anomalies/2024-12-06T12:40:31+00:00monthlyhttps://defensivedepth.com/2015/03/29/sysmon-security-onion-part-1-rise-of-the-encrypted-web/2024-12-06T12:40:31+00:00monthlyhttps://defensivedepth.com/2020/04/02/kolide-fleet-breaking-out-the-osquery-api-web-ui/https://defensivedepth.com/wp-content/uploads/2020/03/2020-03-29_06-18-21.jpg2020-03-29_06-18-21https://defensivedepth.com/wp-content/uploads/2020/03/2020-03-29_06-15-07.jpg2020-03-29_06-15-072021-02-21T19:05:57+00:00monthlyhttps://defensivedepth.com/2020/04/28/osquery-handout-sql-filtering/2020-04-28T14:55:54+00:00monthlyhttps://defensivedepth.com/2020/04/14/osquery-performance-tuning-monitoring/https://defensivedepth.com/wp-content/uploads/2020/04/perf5.jpgperf5https://defensivedepth.com/wp-content/uploads/2020/04/perf2.jpgperf22020-04-15T13:37:18+00:00monthlyhttps://defensivedepth.com/osquery-handouts/2020-04-15T13:33:22+00:00weekly0.6https://defensivedepth.com/research/2020-03-29T09:43:08+00:00weekly0.6https://defensivedepth.com/2020/03/22/osquery-for-security-analysis-q1-2020-update/2020-03-22T18:08:13+00:00monthlyhttps://defensivedepth.com/2019/12/16/detecting-internet-exposed-services-that-shouldnt-be/2019-12-17T16:39:22+00:00monthlyhttps://defensivedepth.com/2018/04/25/bundling-custom-configs-with-osquery-msi/2019-07-24T12:27:54+00:00monthlyhttps://defensivedepth.com/2019/02/28/osquery-enriching-chrome-extension-data/2019-02-28T16:52:03+00:00monthlyhttps://defensivedepth.com/2019/02/21/osquery-join-with-users-table-not-returning-results/2019-02-28T14:24:48+00:00monthlyhttps://defensivedepth.com/2018/12/21/logstash-parsing-windows-eventlogs-shipped-by-osquery/2018-12-21T17:58:22+00:00monthlyhttps://defensivedepth.com/2018/11/11/tag-osquery-logs-with-attck-ids/https://defensivedepth.com/wp-content/uploads/2018/11/osquery.jpgosquery2018-11-11T10:40:00+00:00monthlyhttps://defensivedepth.com/2018/10/10/osquery-cheat-sheet-process-interrogation-persistence-techniques/2018-10-18T19:25:38+00:00monthlyhttps://defensivedepth.com/2018/10/19/integrating-osquery-into-security-onion/https://defensivedepth.com/wp-content/uploads/2018/10/livequery2.jpgLiveQuery2https://defensivedepth.com/wp-content/uploads/2018/10/indicator-link.jpgIndicator-linkhttps://defensivedepth.com/wp-content/uploads/2018/10/livequery.jpgLiveQueryhttps://defensivedepth.com/wp-content/uploads/2018/10/indicators-page.jpgindicators-pagehttps://defensivedepth.com/wp-content/uploads/2018/10/osquery-dashboard.jpgosquery-dashboardhttps://defensivedepth.com/wp-content/uploads/2018/10/backlist021.jpgBacklist02https://defensivedepth.com/wp-content/uploads/2018/10/backlist02.jpgBacklist02https://defensivedepth.com/wp-content/uploads/2018/10/backlist01.jpgBacklist012018-10-18T19:22:17+00:00monthlyhttps://defensivedepth.com/who-we-are/2018-04-26T12:13:34+00:00weekly0.6https://defensivedepth.com/2018/03/06/easily-automate-grafana-dashboard-snapshots/2018-03-06T13:58:48+00:00monthlyhttps://defensivedepth.com/2016/09/10/integrating-autoruns-with-security-onion/2016-09-11T00:17:19+00:00monthlyhttps://defensivedepth.com/2008/08/05/book-review-of-tao-of-network-security-monitoring/2016-01-04T14:55:33+00:00monthlyhttps://defensivedepth.com/2009/01/23/extrusion-detection-review-posted/2016-01-04T14:55:27+00:00monthlyhttps://defensivedepth.com/2009/04/28/hacker-techniques-exploits-incident-handling-a-review/2016-01-04T14:55:20+00:00monthlyhttps://defensivedepth.com/2009/04/21/youtube-vid-of-bejtlich-a-bsd-conference/2016-01-04T14:54:36+00:00monthlyhttps://defensivedepth.com/2016/01/04/strategic-defence-in-cyberspace-beyond-tools-tactics/2016-01-04T14:51:13+00:00monthlyhttps://defensivedepth.com/2015/12/19/new-sysmon-ossec-decoders/2015-12-19T13:31:09+00:00monthlyhttps://defensivedepth.com/2015/09/11/socaugusta-deck-sysmon-security-onion-integration/2015-09-20T11:42:08+00:00monthlyhttps://defensivedepth.com/2015/06/11/sysmon-security-onion-part-5-sysmon-event-collection/https://defensivedepth.com/wp-content/uploads/2015/05/test.pngHybrid Collection2015-06-11T05:51:45+00:00monthlyhttps://defensivedepth.com/2015/04/06/sysmon-security-onion-part-2-rise-of-intelligence-driven-computer-network-defense/https://defensivedepth.com/wp-content/uploads/2015/03/pyramid.pngPyramid of PainPyramid of Pain2015-05-24T16:10:06+00:00monthlyhttps://defensivedepth.com/2015/03/27/using-sysmon-to-enrich-security-onions-host-level-capabilities/2015-03-29T23:39:01+00:00monthlyhttps://defensivedepth.com/wintap/2015-02-20T22:07:47+00:00weekly0.6https://defensivedepth.com/2015/01/20/book-review-the-book-of-pf-a-no-nonsense-guide-to-the-openbsd-firewall/https://defensivedepth.com/wp-content/uploads/2015/02/pf3e_cover01-e1422792805868.pngpf3E_cover012015-02-02T00:59:19+00:00monthlyhttps://defensivedepth.com/2014/11/06/wirelurker/2014-11-06T16:22:50+00:00monthlyhttps://defensivedepth.com/2014/10/30/liability-insurance-digital-security-claims/2014-10-30T11:33:44+00:00monthlyhttps://defensivedepth.com/2014/10/27/prevention-eventually-fails/2014-10-27T08:39:43+00:00monthlyhttps://defensivedepth.com/2014/10/12/outbound-spam-filtering/2014-10-13T00:15:53+00:00monthlyhttps://defensivedepth.com/2014/07/28/governance-challenges-the-digital-side-of-duty-of-care/2014-07-28T10:44:27+00:00monthlyhttps://defensivedepth.com/2014/06/17/new-cs-rc-report-truecrypt-june-2014/2014-06-17T11:00:13+00:00monthlyhttps://defensivedepth.com/2014/05/01/ie6-ie11-0-day-vulnerability-aprilmay-2014/2014-05-01T10:07:13+00:00monthlyhttps://defensivedepth.com/2014/04/14/heartbleed-it-infrastructure-vulnerabilities/2014-04-14T17:39:20+00:00monthlyhttps://defensivedepth.com/2013/09/08/security-onion-cloud-client-nsm-for-the-cloud/2013-09-26T05:31:03+00:00monthlyhttps://defensivedepth.com/2013/09/05/introducing-wintap/2013-09-05T08:35:23+00:00monthlyhttps://defensivedepth.com/2013/03/11/a-preview/2013-04-18T16:19:55+00:00monthlyhttps://defensivedepth.com/2012/08/03/accepted-to-sti-more/2012-08-03T10:50:51+00:00monthlyhttps://defensivedepth.com/2012/01/26/book-review-the-tangled-web-a-guide-to-securing-modern-web-applications/https://defensivedepth.com/wp-content/uploads/2012/01/tangledweb.pngtangledweb2012-01-26T15:15:33+00:00monthlyhttps://defensivedepth.com/2011/12/19/passed-the-giac-gcia-exam/2012-06-08T13:04:52+00:00monthlyhttps://defensivedepth.com/2011/09/05/book-review-practical-packet-analysis/https://defensivedepth.com/wp-content/uploads/2011/09/practical-packet-analysis.jpgpractical-packet-analysis2011-09-05T20:53:56+00:00monthlyhttps://defensivedepth.com/2011/06/15/gsec-gold-paper-accepted-securely-integrating-ios-devices-into-the-business-environment/2011-06-16T02:24:19+00:00monthlyhttps://defensivedepth.com/2011/05/22/websense-policy-server-install-high-latency/2013-05-02T15:58:39+00:00monthlyhttps://defensivedepth.com/2011/04/27/pfsense-2-cookbook-a-technical-review/https://defensivedepth.com/wp-content/uploads/2011/04/4866os_pfsense-2-0-cookbook.jpgpfSense 2.0 Cookbook2012-04-07T16:36:02+00:00monthlyhttps://defensivedepth.com/2011/04/14/how-to-filter-cross-reference-isa-logs-for-owa-account-lockouts/2011-04-15T00:30:18+00:00monthlyhttps://defensivedepth.com/2011/04/11/joomla-is-becoming-a-liability-or-not/2011-04-12T00:29:28+00:00monthlyhttps://defensivedepth.com/2011/03/01/hbgary-juicy-fruit-0-day/2011-03-01T14:17:42+00:00monthlyhttps://defensivedepth.com/2011/02/03/ironkey-vs-knoxit-lok-it-a-subjective-comparison/https://defensivedepth.com/wp-content/uploads/2011/02/2011-01-16_1536.pngLOK-IT.netLOK-IT.net Serving Up Malwarehttps://defensivedepth.com/wp-content/uploads/2011/02/knox-it_img.jpgKnox-IThttps://defensivedepth.com/wp-content/uploads/2011/02/ironkey-d200-32gb-flash-drive.jpgIronkey2012-10-09T15:27:32+00:00monthlyhttps://defensivedepth.com/2011/01/26/facebook-google-persistent-https-just-the-beginning/2011-01-27T13:44:27+00:00monthlyhttps://defensivedepth.com/2011/01/08/in-remembrance-of-bill-zeller/2011-01-09T02:18:29+00:00monthlyhttps://defensivedepth.com/2011/01/06/hyper-v-feature-request-promiscuous-mode/2014-12-30T00:44:56+00:00monthlyhttps://defensivedepth.com/2011/01/03/new-name-new-look-same-content/2011-01-03T23:02:27+00:00monthlyhttps://defensivedepth.com/2010/10/26/fire-in-the-sheep/2010-10-26T21:18:22+00:00monthlyhttps://defensivedepth.com/2010/09/30/school-of-hard-knocks-p2v-mac-addresses/2010-09-30T14:49:18+00:00monthlyhttps://defensivedepth.com/2010/09/12/book-review-posted-network-flow-analysis/2010-09-12T18:45:09+00:00monthlyhttps://defensivedepth.com/2010/07/26/formsite-authorize-net-pci-dss-compliance/2010-08-26T17:52:31+00:00monthlyhttps://defensivedepth.com/2010/07/25/unique-comment-spam/2010-07-25T16:17:16+00:00monthlyhttps://defensivedepth.com/2010/07/05/how-i-procured-a-free-copy-of-network-flow-analysis/2010-07-05T12:32:07+00:00monthlyhttps://defensivedepth.com/2010/06/13/anti-virus-as-it-has-been-done-the-past-20-years-is-dead/2010-06-13T15:43:44+00:00monthlyhttps://defensivedepth.com/2010/03/29/gcih-gold-paper-accepted/2010-04-10T04:37:32+00:00monthlyhttps://defensivedepth.com/2010/03/18/great-lakes-infragard-conference-2010-some-thoughts/2010-03-18T12:49:40+00:00monthlyhttps://defensivedepth.com/2010/03/08/review-of-time-management-for-system-administrators-posted/2010-03-18T17:51:21+00:00monthlyhttps://defensivedepth.com/2010/02/13/hurry-only-random_num-spots-left/2010-12-13T12:34:00+00:00monthlyhttps://defensivedepth.com/2009/11/22/social-engineering-neuro-lingustic-programming-nlp-profiling/2011-05-07T13:15:50+00:00monthlyhttps://defensivedepth.com/2009/11/07/josh-browers-gcih-gold-project/2010-01-27T21:21:13+00:00monthlyhttps://defensivedepth.com/2009/10/08/party-like-its-windows-7-or-how-i-became-a-houseparty-host-for-the-windows-7-launch/2009-10-09T08:44:04+00:00monthlyhttps://defensivedepth.com/2009/08/29/environment-monitoring-for-the-smb-server-room/2013-01-28T20:44:27+00:00monthlyhttps://defensivedepth.com/2009/08/09/sans-audit-521-meeting-the-minimum-pcidss-1-2-becoming-and-staying-compliant/2009-09-29T14:51:01+00:00monthlyhttps://defensivedepth.com/2009/06/19/reason-8-to-love-rackspace-free-red-bull/2009-06-19T12:16:20+00:00monthlyhttps://defensivedepth.com/2009/06/02/great-new-it-pro-qa-website/2009-06-02T08:35:06+00:00monthlyhttps://defensivedepth.com/2009/05/27/a-commodity-xenserver-the-xenserver-install/2011-02-11T16:32:50+00:00monthlyhttps://defensivedepth.com/2009/05/25/a-commodity-xenserver-the-build-specs/2009-05-25T11:00:51+00:00monthlyhttps://defensivedepth.com/2009/05/24/cutting-edge-spy-gear-by-sky-mall/2009-05-24T12:30:09+00:00monthlyhttps://defensivedepth.com/2009/04/23/posscon-2009/2009-04-23T21:25:10+00:00monthlyhttps://defensivedepth.com/2009/04/14/world-domination-part-2/2009-04-14T12:50:51+00:00monthlyhttps://defensivedepth.com/2009/04/05/building-a-firewall-pfsense-on-an-alix-2d3/2013-07-23T02:03:29+00:00monthlyhttps://defensivedepth.com/2009/03/27/april-1st-2009-the-sky-is-not-falling/2009-03-27T16:12:46+00:00monthlyhttps://defensivedepth.com/2009/03/19/internet-explorer-8-inprivate-browsing/2010-01-10T05:37:05+00:00monthlyhttps://defensivedepth.com/2009/03/12/firewall-script-your-next-silver-bullet/2009-03-12T17:26:13+00:00monthlyhttps://defensivedepth.com/2009/03/07/running-citrix-xen-server-on-my-laptop/2009-12-29T16:26:59+00:00monthlyhttps://defensivedepth.com/2009/03/03/anatomy-of-a-hack-the-phpbbcom-attack/2009-03-03T16:01:43+00:00monthlyhttps://defensivedepth.com/2009/02/27/a-sobering-reminder-renew-your-domains/2009-02-27T18:07:42+00:00monthlyhttps://defensivedepth.com/2009/01/15/system-network-administrator-does-not-equal-security-administrator/2009-01-15T14:43:54+00:00monthlyhttps://defensivedepth.com/2009/01/03/protecting-yourself-from-rogue-md5-signed-certificates/2009-01-03T18:39:20+00:00monthlyhttps://defensivedepth.com/2008/12/29/sans-security-policy-awareness-class-review/2008-12-29T16:30:09+00:00monthlyhttps://defensivedepth.com/2008/12/27/fun-with-welchia/2008-12-27T16:15:07+00:00monthlyhttps://defensivedepth.com/2008/12/27/fraud-alert-vistaprint/2011-09-18T14:32:03+00:00monthlyhttps://defensivedepth.com/2008/12/05/more-facebook-shenanigans/2009-03-09T21:30:51+00:00monthlyhttps://defensivedepth.com/2008/12/03/site-refresh/2008-12-03T11:33:51+00:00monthlyhttps://defensivedepth.com/2008/08/09/russia-georgia-the-cyberwar-angle/2008-08-10T01:10:11+00:00monthlyhttps://defensivedepth.com/2008/06/16/xen-joomla-how-to/2008-06-16T17:39:11+00:00monthlyhttps://defensivedepth.com/2008/06/05/business-continuity-planning-vs-disaster-recovery-planning/2010-12-29T20:41:07+00:00monthlyhttps://defensivedepth.com/2008/05/27/sniffing-voip-with-wireshark/2008-06-29T23:32:35+00:00monthlyhttps://defensivedepth.com/2008/04/24/ttl-rfc-spec-vs-real-life-implementation/2008-04-24T11:35:07+00:00monthlyhttps://defensivedepth.comdaily1.02024-12-06T12:40:31+00:00