In a special edition of InfoSecICU, its tool time! Brandon and Gerry discuss their experiences and lessons learned with a bevy of security related software tools that you may utilize in your organization. NSM as a philosophy is covered, followed by SysMon. The guys round out discussing approaches and appropriateness of malware analysis tool sets.

Show Notes

Resources:

Network Security Monitoring (NSM) http://nsmwiki.org/Main_Page

SecurityOnion https://securityonion.net/

RocNSM http://rocknsm.io/

SysMon https://docs.microsoft.com/en-us/sysinternals/downloads/sysmon

PEStudio https://www.winitor.com/

ApateDNS https://www.fireeye.com/services/freeware/apatedns.html

IDA Pro https://www.hex-rays.com/products/ida/

WinDbg https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/debugger-download-tools

VirusTotal https://www.virustotal.com/

Joe Sandbox https://www.joesecurity.org/

Strings https://en.wikipedia.org/wiki/Strings_(Unix)

Wireshark https://www.wireshark.org/

 

One Cool Things

Gerry: 80’s Retro Synthwave Collection

The Midnight https://youtu.be/_pUL7u-mYqA

FM-84 https://youtu.be/rSGnNMnvM6M

Timecop1983  https://youtu.be/egAB2qtVWFQ

Brandon: Caffe Shakerato http://saltandwind.com/recipes/102-caffe-shakerato-recipe 

Contact

Email infosecicu@musc.edu

Twitter: