Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Highlighted

An Incident Response Toolkit

Hello,

I have been compiling a list of Secure Knowledge articles with regards to Incident Response. The ones I have been able to list are the following:

  • sk103154
  • sk112061
  • sk110873
  • sk112454
  • sk106019

 

Could you let me know if there are any more please as Incident Response is a topic I am very interested in?

Thanks in advance.

2 Replies
Highlighted

Re: An Incident Response Toolkit

It depends on what type of incidents you expect.
My usual incidents involve "it's broken and I need it fixed now" type of issues.
0 Kudos
Highlighted

Re: An Incident Response Toolkit

I'm referring to "under attack" - related events only, not sysadmin events such as a failing cluster etc.

I hope this makes sense.

Nick

0 Kudos