Browsing CategorySIEM

Modern CyberSOC – A Brief  Implementation Of Building a Collaborative Cyber Security Infrastructure

In earlier years, everyone depends on SOC (includes firewalls, WAF, SIEM,etc.) and the prioritize in building the SOC provides security and the CIA was maintained. However, later the emerge of the attacks and the threat actors becomes more challenge and the existing SOC will not able to provide better security over the CIA. There are […]

The post Modern CyberSOC – A Brief Implementation Of Building a Collaborative Cyber Security Infrastructure appeared first on GBHackers On Security.

Intrusion Detection System (IDS)  and Its Detailed Working Function – SOC/SIEM

An intrusion detection system (IDS) is a type of security software designed to automatically alert administrators when someone or something is trying to compromise information system through malicious activities such as DDOS Attacks or security policy violations. An IDS works by monitoring system activity through examining vulnerabilities in the system, the integrity of files and […]

The post Intrusion Detection System (IDS) and Its Detailed Working Function – SOC/SIEM appeared first on GBHackers On Security.

SIEM Better Visibility for SOC Analyst to Handle an Incident with Event ID

We are in the complex world where attacks are increasing day by day, so today the cyber intelligence depends on SIEM as a part of infosec (security incident and event management). Most companies depend on logs and packets to have a better view.. above 90 % of them are working with logs rather than packets. People, process, and technology will […]

The post SIEM Better Visibility for SOC Analyst to Handle an Incident with Event ID appeared first on GBHackers On Security.