Wazuh rule sets can be a real jungle – and nobody wants to blindly hack their way through it. That’s why we visualized the whole thing with Neo4j…

Cyber resilience involves the ability to anticipate threats, withstand active attacks, respond quickly to incidents, and recover operations with minimal disruption. Modern cyber threats continue to introduce new challenges..

As a Security Analyst, knowing how to effectively use security tools is critical to improving productivity and and strengthening an organization’s defense against cyber threat. While exploring tools commonly used by SOC analysts…

Organizations face the challenge of maintaining visibility and control over their IT infrastructure. A forgotten user account, an outdated software package, an unauthorized service, or a malicious browser extension can expose vulnerabilities…

Wazuh is an open-source security detection tool and is designed to identify threats using its alert rule system. This system uses rules to search for potential security threats or issues in logs from various sources, such as operating system logs…

Latrodectus is a versatile malware family that employs advanced tactics to infiltrate systems, steal sensitive data, and evade detection. Named after the black widow spider genus “Latrodectus”, this malware behaves with…

Kubernetes has become the backbone of modern cloud infrastructures – but with its power comes complexity and risk. As companies adopt containerized workloads, ensuring visibility and protection across dynamic environments becomes crucial…

Wazuh is a security platform that offers unified XDR (Extended Detection and Response) and SIEM (Security Information and Event Management) protection for endpoints and cloud workloads. It consists of a single universal agent and three main…

STRONTIUM is a Russian-based threat actor associated with the Russian General Staff Main Intelligence Directorate (GRU) and operates under the name Forest Blizzard. Forest Blizzard has also utilized a custom post-compromise tool named…