FREE INCIDENT RESPONSE PLATFORM - Velociraptor Install

Показать описание

Join me as we install your own Incident Response platform, Velociraptor. Remotely investigate and quarantine your endpoints. Protect your endpoints! Let's deploy a Host Intrusion Detection System and SIEM with free open source tools. Join me as we explore and learn together.

Taylor Walton

Рекомендации по теме

Комментарии

Still a very valid and great video, one issue you are going to run into (speaking from experience) is that with deploying this in a DFIR scenario some firewalls don't support FQDN allowlisting, same with CrowdStrike when you contain a host you are only able to add IPs to the containment policy 🙃

jannis

Amazing video Taylor!!!! 😃👌🏼 Keep making this kind of content! 💪🏼

mntas

Great video. This really helped me out. Thanks alot !!!

tolerit

Great video. I just wanted to point out that you (correctly) stated that Letsencrypt certs expire after 3 months but not that they they use an ACME client program to automate renewal of the cert so generally I think they are a better choice than self -signed certs. Top tip - you can secure services on your local network without exposing your service to the web by using the ACME DNS01 challenge to request the cert. You will need to be using an external DNS provider with a supported DNS API (which includes most of the big players.

jameslucas

Great video! Straight forward and to the point. Much clearer than the original documentation. Only challenge I'm having at the moment is using the Public Facing IP address of the EC2 instance pointed to my subdomain, however I'm waiting on the DNS to propagate. Made the Ubuntu server run apache2, not sure if that was needed

GregoryBaskincom

Amazing man. This is need of the hour. But extende more steps with own ssl certificate

arunrmyt

Is it logically justified to use wazuh and velociraptor together? Or it is not best practice approach?

---trqg

Its is recommended to you install Velociraptor server in same Wazuh server ..?

robinsondurai

Great video indeed! Everything went fine except when I created the custom installer using the custom.config file. The agent is not showing on the Velociraptor manager portal.! what I'm doing wrong

aussiejordanboy

What is the terminal app thay you're using?

AlexHera

I Have no clients. Microsoft took PC control for explore it to his BENEFIT.

wkfiutl

In addition, he contaminate my PC. So i hate this Satanic Microsoft.

wkfiutl

FREE INCIDENT RESPONSE PLATFORM - Velociraptor Install

Open Source Incident Response Platform - Your SOC Needs This!

FREE INCIDENT RESPONSE PLATFORM - Velociraptor Install

How to: TheHive, a free and open source incident response platform

this Cybersecurity Platform is FREE

How to use TheHive | Security Incident Response Platform | TyrHackMe TheHive Project

ORNA - SaaS Cyber Incident Response Platform

Jeli - A Free Incident Response Slack Bot

SOF ELK® A Free, Scalable Analysis Platform for Forensic, Incident Response, and Security Operation...

Emerging threats and tactic response preparation | Hack The Box

xMatters Incident Response and Management Platform (short)

Jeli's Incident Management Platform

xMatters Incident Response and Management Platform

Hands-On Windows Incident Response

Hunt for Hackers with Velociraptor

What is SOAR (Security, Orchestration, Automation & Response)

INCIDENT RESPONSE TRAINING FREE - Fast, Easy SIEM Installation - Day 7

World's Best SIEM Stack - Build your own Security Stack For FREE! - INTRO

Build a Powerful Home SIEM Lab Without Hassle! (Step by Step Guide)

Master the Unexpected | Optimize Incident Response | Incident Management | Automated Escalations

Cybersecurity Threat Hunting Explained

Building a Cybersecurity Incident Response Plan

Incident Response in Google Cloud - Daniel Rodriguez

SOC 101: Real-time Incident Response Walkthrough

Incident Management Software on Microsoft 365