Clone of https://github.com/rmusser01/Infosec_Reference . For those who would prefer to not be tracked by MS.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
 
 

70 KiB

Defense

Table of Contents

https://blog.stealthbits.com/how-to-detect-overpass-the-hash-attacks/

  • To-Do
    • User Awareness training
    • Objective-See Tools
    • Cred defense
    • SPA
    • Azure stuff
    • AWS Stuff
    • GCP Stuff

https://infosec.mozilla.org/guidelines/openssh https://wiki.mozilla.org/Security/Server_Side_TLS https://www.dhs.gov/stopthinkconnect-toolkit

https://forensixchange.com/posts/19_08_03_usb_storage_forensics_1/ https://www.slideshare.net/HuyKha2/adsvs-v10-improving-the-security-of-active-directory

https://avleonov.com/2016/08/02/nessus-v2-xml-report-format/ https://avleonov.com/2017/01/25/parsing-nessus-v2-xml-reports-with-python/ https://www.verifyit.nl/wp/?p=175591 http://static.tenable.com/documentation/nessus_v2_file_format.pdf

https://docs.microsoft.com/en-us/windows/security/threat-protection/windows-defender-application-control/windows-defender-application-control-deployment-guide

https://github.com/MicrosoftDocs/windowsserverdocs/blob/master/WindowsServerDocs/identity/securing-privileged-access/securing-privileged-access-reference-material.md

http://blog.win-fu.com/2017/08/stored-passwords-found-all-over-place.html?m=1

https://cqureacademy.com/blog/securing-infrastructure/role-separation-pki

https://github.com/google/santa

https://www.microsoft.com/security/blog/2015/02/11/krbtgt-account-password-reset-scripts-now-available-for-customers/ https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/manage/ad-forest-recovery-resetting-the-krbtgt-password

https://dirteam.com/sander/2012/09/05/new-features-in-active-directory-domain-services-in-windows-server-2012-part-11-kerberos-armoring-fast/ https://social.technet.microsoft.com/wiki/contents/articles/38015.credential-guard-say-good-bye-to-ptht-pass-the-hashticket-attacks.aspx https://oddvar.moe/2017/12/13/harden-windows-with-applocker-based-on-case-study-part-1/

https://www.youtube.com/watch?v=YXjIVuX6zQk


Defense & Hardening

Sort

AuditD * A Linux Auditd rule set mapped to MITRE's Attack Framework