CYBERSECURITY JOB HUNTING GUIDE
Blue tools
Author: Stefan Waldvogel
Add blue Cybersecurity tools step by step
Blue tools have the same problem like red tools... you have hundreds of useful tools and you cannot learn all. The good news is, many tools are similar. If you know Splunk, you can use and learn ELK quickly because the knowledge is transferable.
You want a free/affordable starting point? You can use TryHackMe's defender path. If you like the free modules, one month is $10.
You prefer YouTube: youtube.com/playlist?list=PLjWEV7pmvSa6x3anTV4ccUOoqTLCLtRsW These videos are highly technical but great. You can start with Kolide and OSQuery.
Tools:
Massive list of hundreds of tools: github.com/meirwah/awesome-incident-response
www.malware-traffic-analysis.net/
Sigma: https://github.com/SigmaHQ/sigma
SysMonSearch: https://github.com/JPCERTCC/SysmonSearch
Memory Tools:
Volatility: github.com/volatilityfoundation/volatility
You want a free/affordable starting point? You can use TryHackMe's defender path. If you like the free modules, one month is $10.
You prefer YouTube: youtube.com/playlist?list=PLjWEV7pmvSa6x3anTV4ccUOoqTLCLtRsW These videos are highly technical but great. You can start with Kolide and OSQuery.
Tools:
Massive list of hundreds of tools: github.com/meirwah/awesome-incident-response
www.malware-traffic-analysis.net/
Sigma: https://github.com/SigmaHQ/sigma
SysMonSearch: https://github.com/JPCERTCC/SysmonSearch
Memory Tools:
Volatility: github.com/volatilityfoundation/volatility
© 2021. This work is licensed under a CC BY-SA 4.0 license