Differences
This shows you the differences between two versions of the page.
security_wiki:main [2017/02/18 01:44] wizard [The Rules of Network Security] |
security_wiki:main [2019/05/25 23:50] |
||
---|---|---|---|
Line 1: | Line 1: | ||
- | ====== Security ====== | ||
- | {{ : | ||
- | ===== Firewalls ===== | ||
- | * [[ Cisco ASA Packet Capture ]] | ||
- | * [[ Ports Used by LWAPP/ | ||
- | |||
- | ---- | ||
- | |||
- | ===== IDS/IPS ===== | ||
- | * Cisco SourceFire | ||
- | * Snort IDS | ||
- | * CheckPoint | ||
- | * BroNSM | ||
- | * TrendMicro Tipping Point | ||
- | |||
- | ---- | ||
- | |||
- | ===== The Rules of Network Security ===== | ||
- | 1) Never self incriminate | ||
- | * Never admit | ||
- | * Deny everything | ||
- | * Demand proof | ||
- | * Make counter-allegations | ||
- | * Act belligerent and throw stuff | ||
- | 2) No excuses | ||
- | 3) Don't put your dick in crazy | ||
- | 3a) Don't let crazy put its dick in you | ||
- | 3b) No DP | ||
- | 4) Don't be " | ||
- | 5) Be excellent to each other | ||
- | 6) Document all the things!! | ||
- | * Is it in the wiki? | ||
- | * Paper trail or it didn't happen, CC everyone or you didn't do it. | ||
- | * If it isn't in an email, or ticket, it never happened. | ||
- | 7) Always trust your wingman | ||
- | |||
- | ---- | ||
- | |||
- | ===== Carbon Black ===== | ||
- | - Trust me, the community isn't the best, but it's better than nothing. | ||
- | * https:// | ||
- | - [[ Quick Guide to Carbon Black ]] | ||
- | |||
- | ---- | ||
- | |||
- | ===== Kippo HoneyPot ===== | ||
- | - {{ security_wiki: | ||
- | - http:// | ||
- | - http:// | ||
- | |||
- | ---- | ||
- | |||
- | ==== SIEMs ==== | ||
- | * [[ HPE ArcSight ]] | ||
- | * [[ LogRhythm ]] | ||
- | * IBM QRadar | ||
- | * McAfee Nitro | ||
- | |||
- | ---- |