Wazuh, Sysmon and Atomic Red Team - 239 - podcast episode cover

Wazuh, Sysmon and Atomic Red Team - 239

SECTION 9 Cyber Security
Apr 11, 202228 minEp. 239
--:--
--:--
Listen in podcast apps:
Metacast
Apple Podcasts
Spotify
Download
YouTube
Overcast
Pocket Casts
Episodes.fm
Download Metacast podcast app
Listen to this episode in Metacast mobile app
Don't just listen to podcasts. Learn from them with transcripts, summaries, and chapters for every episode. Skim, search, and bookmark insights. Learn more

Episode description

Time for more Wazuh and Sysmon. This time we’re adding Atomic Red Team for testing. This is starting to look really good. Unfortunately we’re missing something.

LINKS

1. Wazuh · The Open Source Security Platform

2. Lab Instructions - Emulation of ATT&CK techniques and detection with Wazuh

3. Sysmon config from SwiftOnSecurity

4. Wazuh Server Rules

5. Video: 163. Use Sysinternals Sysmon with Wazuh: The Swiss Army Knife for Windows Monitoring

FIND US ON

1. Twitter - DamienHull

2. YouTube

For the best experience, listen in Metacast app for iOS or Android
Open in Metacast
Wazuh, Sysmon and Atomic Red Team - 239 | SECTION 9 Cyber Security podcast - Listen or read transcript on Metacast