A Blue Teamer’s Bug Report
Recently I submitted my first ever bug report! For me, it's a big deal, since I usually think of bug reports as being something that only red teamers and pentesters are able to fin...
Read MoreBlumira’s SIEM Detection Rules Explained
A security information and event management (SIEM) platform detects and alerts on malicious behavior in an environment to protect from threats such as ransomware and breaches. S...
Read MoreHow To Detect AS-REP Roasting With Blumira
During a recent proof of concept with a new customer, there was an interesting back and forth between our Blumira team and the customer testing our detections in a pentesting lab e...
Read MoreWhat To Log In A SIEM: Logging Best Practices
A poorly configured SIEM can result in an overwhelming amount of useless alerts — or worse, a lack of alerts for real security incidents. Neither option is ideal. Many new B...
Read MoreBest Practices For Configuring Firewall Rules
A firewall won’t secure your environment like it should if you don’t properly configure its ports and policies. But which ports should you block? It’s a question that every s...
Read MoreHow To Set Up and Configure LAPS
LAPS (Local Administrator Password Solution) is a free and helpful tool that Microsoft recommends for local administrator password management. Below you will find a step-by-st...
Read More