awesome-security-hardening
awesome-cybersecurity-blueteam
awesome-security-hardening | awesome-cybersecurity-blueteam | |
---|---|---|
6 | 4 | |
4,965 | 4,015 | |
- | - | |
4.7 | 4.1 | |
30 days ago | 4 months ago | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
awesome-security-hardening
-
rate my threat model i will be implementing and i need help and tips also
If you want to go extreme, I remember from many years ago, there used to be a publicly released document by Australia's cyber security agency, made largely for Windows, which used to list attack vectors on a complex scale. I used to follow their listed possible vectors to formulate threat models as a kid for my Windows computer. Back in the day they used to provide PDF, now its webpages (https://www.cyber.gov.au/acsc/view-all-content/advice/guidelines-system-hardening). This also exists (https://github.com/decalage2/awesome-security-hardening), a bit more wide coverage of OSes and practices.
-
Resources to learn backend security from scratch
Maybe these two repos can help you, I've used them both from time to time to look up stuff I have no idea about as a frontend main: https://github.com/imthenachoman/How-To-Secure-A-Linux-Server https://github.com/decalage2/awesome-security-hardening
- Android fans, what are the primary reasons why you will never ever switch to an Iphone?
- Resource for best practices/standard?
-
Brand new to Docker
here is a collection of hardening guides This will get you started in the right direction.
-
I Recently had a data breach and i think i secured everything. But did i? Help me please.
This is called system hardening. Try looking for CIS Benchmarks, awesome hardening (github), STIG's ,mitre baseline, hardening kitty, hardening checklist
awesome-cybersecurity-blueteam
-
SIEM content development
There's a ton of valuable resources out there when searching for "detection engineering", beyond that, check https://research.splunk.com/ to get an idea of a structured and contextual approach. Beyond that, check Rob van Os Magma use case framework and any blog you can find on https://correlatedsecurity.com (Jurgen Visser). Last but not least, anything "awesome" on github, e.g. https://github.com/fabacab/awesome-cybersecurity-blueteam
-
SIEM - how logs/events are dealt with
Add the latest edition of the MITRE SOC strategies book (https://www.mitre.org/sites/default/files/publications/11-strategies-of-a-world-class-cybersecurity-operations-center.pdf) and potentially add https://github.com/fabacab/awesome-cybersecurity-blueteam to your bookmarks.
- GitHub - fabacab/awesome-cybersecurity-blueteam: A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
-
Good resources for first learning Cyber security?
for blue teaming :https://github.com/fabacab/awesome-cybersecurity-blueteam
What are some alternatives?
windows_hardening - HardeningKitty and Windows Hardening settings and configurations
personal-security-checklist - π A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
microsoft-windows-10-stig-baseline - InSpec profile for Microsoft Windows 10, against DISA's Microsoft Windows 10 Security Technical Implementation Guide (STIG) Version 1, Release 19
open-source-cs-python - Video discussing this curriculum:
dockerholics - Apps and examples from the Dockerholics group.
turbo-scanner - A port scanner and service detection tool that uses 1000 goroutines at once to scan any hosts's ip or fqdn with the sole purpose of testing your own network to ensure there are no malicious services running.
NIST-to-Tech - An open-source listing of cybersecurity technology mapped to the NIST Cybersecurity Framework (CSF)
awesome-security-feed - A semi-curated list of Security Feeds
awesome-golang-security - Awesome Golang Security resources πΆπ
cyber-security - My cyber security tools
Digital-Forensics-Guide - Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.
companies-hiring-security-remote - This repo is meant to be a list of companies that hire security people full remote.