Happy to drop this new open-source tool that connects the dots during a cyber attack to help blue teams cut down response times, avoid alert fatigue, and communicate during an incident. More info here >> labs.withsecure.com/tools/detectree #cybersecurity #incidents #infosec
2
59
185
0
72
Download Video
Threat hunters @AnduinSwim and @Blazef104 were inspired to create the tool in response to @JohnLaTwC’s quote “Defenders think in lists. Attackers think in graphs. As long as this is true, attackers win.”
@WithSecure ドットは物理サーバじゃなくてサービスなんだと思いますが、一部サービスがアタックされてダウンした時に接続を変えてシステムとして動き続けられるのかどうかよくわからない(というか完全性が失われてまずいと思ってる)です。