Saved by Chad Hudson
OSINT for Incident Response
Knowing the IP address(es) of your organization is the first step toward finding what is currently listed, but if you’re not sure there are several options. You can use the IP addresses of the resolver that we utilized earlier in this chapter or you can look at arin.net (Figure 18-16). Using the resolver (or shodan) may return results of server IP
... See moreLee Brotherston, Amanda Berlin • Defensive Security Handbook
This quick summary brought to you by tl;dr sec, a weekly newsletter of the latest and greatest security tools, talks, and resources.
Subscribe for free at https://t.co/dETCZSssDj... See more
We might also define an “Enterprise Attack Surface” that not only consists of all systems and networks in that organization but also the exposure of third parties. This includes everyone in the enterprise “ecosystem” including major customers, vendors, and perhaps government agencies. (Recall that in the case of the Target breach, the exploit came
... See moreStuart McClure • How to Measure Anything in Cybersecurity Risk
Asset Vulnerability : Identifying vulnerabilities within these assets is the next step. Vulnerabilities can be technical (e.g., unpatched software) or human-related (e.g., suboptimal configuration). Individual vulnerabilities will also have different outcomes and widely varying likelihoods of real-world exploitation. Does successful exploitation o
... See more