I work in the incident response/threat hunting world, and a lot of times my team does not have access to the internet to lookup resources and research findings within the network we are hunting on due to security limitations. We have a security kit comprised of a SEIM and many other tools we plug into the network we are looking at, but a lot of my team is inexperienced and still learning a lot about how our tools work or finding IOCs.
Is there any good solutions or methods for collecting and consolidating internet resources that can be duplicated on an air-gapped network, such as tool documentation, guides, manuals, practices, html pages, ect from the internet? A lot of our tools are hosted within containers, and I was thinking about hosting a local web server from one of these, but the task of gathering all the useful data seems like it take awhile, not to mention formatting dynamic webpages to work in the a non-internet connected environment and indexing it all to make it presentable. submitted by /u/saph27
[link] [comments]
http://dlvr.it/SxLY6n
Full width home advertisement
Blog Archive
-
▼
2023
(178)
-
▼
October
(55)
- Cyber Law question: exactly what kind of devices c...
- Bootloader unlocking | Pre-requisites of rooting a...
- How to handle working in cybersecurity long term
- A Quick Price Manipulation
- Is DLP roll out always miserable for software engi...
- Citrix Bleed: CVE-2023–4966
- Top cybersecurity stories for the week of 10-23-23...
- Bug Bounty Hunting — Essential Tools and Techniques
- How can I best leverage Fortinalyzer in combinatio...
- A Guide to LFI Discovery: Uncover Vulnerabilities ...
- Top Threat Intelligence Tools To Bolster Your Cybe...
- Seeking Advice on Getting Comfortable with Ghidra
- 2 Self-XSS in 5 minutes
- What To Do After Choosing a Target? Part 01 | Bug ...
- Google cybersecurity experts share tools to improv...
- Current AI Cybersecurity tools
- Best Practices for Writing Quality Vulnerability R...
- Cybersec books - paperback
- Ransomware Attack: The Digital Pandemic We Can’t I...
- On prem logging solutions similar to LogRhythm?
- Html Injection & xss in support chat
- What is the coolest SOAR automations you’ve seen?
- Aleo Bug Bounty Update 3x
- The Hidden World of DNS Tunneling…(Infosec Version)
- Open Threat Exchange (OTX): Enhancing Cybersecurit...
- Hardware/software Recommendations?
- HBSQLI Automated Tool For Testing Header Based Bli...
- Tools with consolidated endpoint security features?
- Findomain Unleashed: A Tactical Dive into Advanced...
- Week in Brief - Google Targeted by Unprecedented D...
- Apache HTTP Server /server-status information disc...
- Introducing Architech’s Beta Testing Program
- Email Threat Researchers Please Stand Up
- Your First Web3 Security Bug Report: A Concise Gui...
- Phishing simulator tools
- Offline options for resources
- Unauthorized Email Address Change Blocks User Acco...
- Want to switch into penetration testing
- Let’s Build a Network Scanner Using Python
- AI Powered Ethical Hacking tool
- Apply Ethical Principles in Bug Hunting
- ReHold Bug Bounty Program
- Upcoming interview, advice of any kind is appreciated
- Simple Android tools Setup for Bug-bounty
- A Beginner’s Guide to AJP Proxy: Bridging Apache a...
- Account Takeover
- Building the SOC Home lab - Questions
- Critical SQL Injection Vulnerability in Login Page...
- What do you look for before trying an AI tool?
- Bypassing CSRF token validation — CSRF | part — 1
- Apply Ethical Principles in Bug Hunting
- How to Learn While on The Job
- A guide on how to reproduce a bug in Software Deve...
- Reporting technique
- IDOR and Mass Assignment attacks leads to Full Acc...
-
▼
October
(55)
Advertisement
LIVE CYBERTHREAT
Latest Trends
Contact Form
amcat question search
search Pentest tools
Total Pageviews
Search Blog
Copyright 2017, " Vpentest ". All rights Reserved.
| Designed by Colorlib
No comments:
Post a Comment