Is it worth investing time in learning how to write custom Snort rules from scratch, or is it better to spend my time on something else and just update published rules if i were to work as an analyst?
Aside from Snort, Splunk, and basic rule writing, what other skills or tools should I prioritize learning to become a proficient detection engineer? I've heard about forensics (network and memory analysis), YARA, Sigma, and the ELK stack—how important are these in practical settings?
I'm open to any advice, recommendations, or personal experiences you can share. Whether you're a seasoned cybersecurity professional or a fellow enthusiast, I'd greatly appreciate your insights.
Thank you in advance for your help! submitted by /u/Recent_End964
[link] [comments]
http://dlvr.it/T4pKVR
Full width home advertisement
Blog Archive
-
▼
2024
(231)
-
▼
March
(52)
- Want to learn Cloud Security as an AppSec Engineer
- How i found Multiple IDOR
- Does your company involve security in AI/Generativ...
- i want to learn Threat Detection/ Detection engine...
- The Future of Internet Security and Artificial Int...
- Best asset management tools?
- Bug Bounty Recon At Its Easiest with Netlas.io
- SoftwareReviews Announces the Top Four Security Or...
- Capture the Flag Challenge (pentesting)
- What is Cross-Site Scripting (XSS)?
- EC CTIA Exam
- Cybersecurity tools from Educational Service Cente...
- NIST CSF Partner
- Guidance needed for optimal career path & higher s...
- How i get my bounty $$$ in YesWehack within 5mins?
- AWS' Alex Martinez on why AI tools upskill cyberse...
- What are people using to remediate Tenable Vulnera...
- urit13.16 Lab: DOM XSS in jQuery anchor href attri...
- The higher you go, the less you know
- BlackBerry cybersecurity tools now available to pu...
- Seeking Advice: Creating a College Cybersecurity P...
- Get allmost all subdomains
- Zero Trust & API Security: Robust Authentication w...
- Web Security Short Series — SQLi.
- security.txt Expiry - what's the point
- Bug Bounty Platforms
- Testing on websites created by myself
- Tips to get your first bug/bounty
- Top cybersecurity stories for the week of 03-11-24...
- GRWM for WebApp PenTest | Command Injection
- Security Administrator vs Security Engineer?
- Researcher Q&A: Friends Who Work Together, Hack Be...
- Tales of a 30 Year-Old Cybernaut
- What tools would you utilize to test the security ...
- Independent Cybersecurity Audits Are Powerful Tool...
- Information Gathering #1
- Advice for MSSP budget
- Bug Bounty Challenge: Day 1/15–09/03/2024
- 0 Click Account Takeover Via reset password weird ...
- Reach Security raises $20M to enhance AI-driven cy...
- How to get started in CTF's and bug bounty with ve...
- How I found Reflected XSS which leads to Account T...
- Reach Security taps a company’s existing tools to ...
- My First “Real” Hack
- 12.4 Lab: Exploiting NoSQL operator injection to e...
- Best SIEM solution for small company?
- My Recon Methodology (ep 1)
- 11.8 Lab: Exploiting XXE via image file upload | 2024
- Does shift left actually work for you?
- Scam or Legit? - Bug Bounty request
- CISA put it all in one place
- Authentication Bypass Using Response Manipulation
-
▼
March
(52)
Advertisement
LIVE CYBERTHREAT
Latest Trends
Contact Form
amcat question search
search Pentest tools
Total Pageviews
Search Blog
Copyright 2017, " Vpentest ". All rights Reserved.
| Designed by Colorlib
No comments:
Post a Comment