Category Guides and Tutorials

Risk-Based Vulnerability Management How to Manage Vulnerabilities Discovered on Company Assets? Let’s consider an example: CVE-2024-0012 – PAN-OS Authentication Bypass in the Management Web Interface. NIST Description: “An authentication bypass in Palo Alto Networks PAN-OS software enables an unauthenticated attacker…

A while ago, I wanted to ensure that all endpoints in the company where I was responsible for security were fully updated. Since we had a consistent Windows 10 environment, the task was to verify that the latest Microsoft Cumulative…

Some time ago, I became concerned about unnoticed sources that had stopped sending logs to our SIEM system. This issue can have serious consequences, ranging from undetected attacks to compliance violations, so I began searching for a reliable solution. The…

Some time ago, I had the opportunity to configure File Integrity Monitoring (FIM) on the CrowdStrike platform. The setup was relatively straightforward, except for one aspect – email alerts. When configuring notifications for file changes, I found two native options…

Some time ago, I was assigned the task of implementing a File Integrity Monitoring (FIM) solution for PCI-DSS compliance. At that time, I was managing Cortex XDR as the company’s Endpoint Protection, but it did not include a dedicated FIM…