Recon InfoSec (8)

Geolocation via Pipelines in Graylog

Megan Roddie

To the delight of most Graylog users, geolocation is automatically built into the platform via the...

Securing G Suite

Megan Roddie

Shortly after publishing Part 1 of my G Suite DFIR blog series, I gave a talk on the topic at...

G Suite DFIR - Part 1: Incident Response

Megan Roddie

US-CERT TA18-106A for the Rest of Us!

Leo B

EXECUTIVE SUMMARY US-CERT posted a new Tactical Alert (TA18-106A) based on a combined intelligence...

Meltdown and Spectre

Ron Phillips

SUMMARY A collaboration between multiple security industry and academic researchers led to the...

Build a Free Private Mesh Network for Secure DevOps

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

Over time and for various reasons, I've amassed quite the catalog of cloud-hosted servers. This has...

Auditing G Suite Login Activity

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

Often times during incident response activities, the responder is overwhelmed with data. The need...

When Browser Extensions Go Rogue

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

So it's a random Wednesday night and I'm studying for my GIAC GCFE exam (which I just passed...

Slacking at Security Operations

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

Running a Security Operations Center requires fighting a constant battle to increase analyst...

Macro Security for Enterprise Defenders

${{ picture_of_text }} {{ content.blog_author.display_name }}$

Eric Capuano

In my experience, one of those most prevalent and common threats to today’s enterprise networks...