How to Test Your SIEM Detections for Password Spraying
While many organizations may fail to fully deploy a SIEM solution due to complexity and lack of resources and staff to manage or fine-tune it, others may stand one up quickly for l...
Read MoreHow to Reduce Your Overall Attack Surface With Geoblocking
One of the most basic and best security practices includes limiting which geographic regions you allow to connect to your environment - also referred to as geoblocking. It’s extr...
Read MoreLogmira: Windows Logging Policies for Better Threat Detection
Blumira’s Sr. Incident Response Engineer Amanda Berlin has created a free set of pre-configured Windows policy settings, called Logmira (available on Github), to help any organiz...
Read MoreBlumira’s Threat Hunting Playbook
The Blumira security team was recently engaged by an existing Blumira customer to perform a general security integrity test on their newly acquired company. The Blumira platform au...
Read MoreHow to Enable Sysmon for Windows Logging and Security
In addition to the default built-in logging that Windows Server offers, there are also additional configuration options and software that can be added to increase the visibility of...
Read MoreHands in the Honeypot: Detecting Real Security Threats
A honeypot is a network device that either appears to contain or does actually contain vulnerable data intended to lure an attacker into accessing. Whether a threat actor tries to ...
Read More