Role-Based Administration

Dynamic Blocklists and Threat Feeds

Deploy a Blumira Honeypot

Create a Blumira Sensor

Build a Sensor on Ubuntu

Microsoft Defender for Endpoint

Microsoft Defender for Office 365

Azure AD

Okta

Cisco Umbrella

Google G Suite

Duo Security

Microsoft Office 365

Microsoft Cloud App Security

Microsoft Azure Event Hub

Symantec Endpoint Security

Trend Micro Apex One

Microsoft Defender for Endpoint

Microsoft Windows Defender

Blackberry Cylance

Sophos Central

ESET Endpoint Protection

Malwarebytes

VMware Carbon Black Managed Defense

VMware Carbon Black Endpoint Protection

VMware Carbon Black Response

CrowdStrike Falcon Endpoint Protection

Advanced Microsoft Logging (GPO)

Microsoft Windows Defender

Microsoft Windows Firewall

Microsoft Windows DNS

Microsoft Windows PowerShell

Microsoft Windows IIS

Microsoft Active Directory

Microsoft Windows Server

Microsoft Defender for Endpoint

Microsoft Defender for Office 365

Azure AD

Microsoft Office 365

Microsoft Cloud App Security

Microsoft Azure Event Hub

LastPass

Okta

Microsoft Active Directory

Duo Security

Citrix Netscaler ADC

WatchGuard Firebox Firewall

F5 Big-IP

Palo Alto Next-Gen Firewall

Fortinet Fortigate Firewall

Cisco Meraki Firewall

SonicWall Next-Gen Firewall

Sophos XG Firewall

Cisco FTD FirePower Threat Defense

Cisco ASA Firewall

Check Point Next Generation Firewall

Linux Journald

Apache Web Server

VMware ESXi

Cisco Umbrella

Sophos Central

Apple Mac OS

Linux Servers

Proofpoint Advanced Threat Protection

Palo Alto Networks Panorama

Threat Feed: Abuse.ch SSL Blacklist

Threat Feed: Abuse.ch Feodo Tracker

Blumira Feeds: An Overview

Honey Pot Lateral Movement

Domain Administrator Account Creation

Password Spraying