DEV Community

# blueteam

Defensive security strategies, threat detection, and incident response.

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
WAF Bypass Testing: A Defensive Playbook for Blue Teams

WAF Bypass Testing: A Defensive Playbook for Blue Teams

Comments
4 min read
My Windows audit tool flagged rundll32 as suspicious. It was right, and useless.

My Windows audit tool flagged rundll32 as suspicious. It was right, and useless.

Comments
4 min read
Construyendo un Home Lab Blue Team para PYMEs con pfSense y Snort: mi TFG para ASIR

Construyendo un Home Lab Blue Team para PYMEs con pfSense y Snort: mi TFG para ASIR

Comments
3 min read
I Built a Cyberpunk Forensics Simulator to Teach Blue Team Thinking

I Built a Cyberpunk Forensics Simulator to Teach Blue Team Thinking

Comments
4 min read
Observable Adversarial Behavior, Not Portable Adversarial Procedure

Observable Adversarial Behavior, Not Portable Adversarial Procedure

5
Comments
6 min read
SHENRON v0.3.3: From Telemetry Generator to Blue-Team Reasoning Instrument

SHENRON v0.3.3: From Telemetry Generator to Blue-Team Reasoning Instrument

8
Comments 1
5 min read
How I taught a log scanner to tell brute force from credential spray

How I taught a log scanner to tell brute force from credential spray

Comments
4 min read
After event viewer crashed on a 400mb evtx, i wrote my own log triage cli

After event viewer crashed on a 400mb evtx, i wrote my own log triage cli

Comments
4 min read
Sysmon Logs Deep-Dive - From Raw Data to Threat Evidence

Sysmon Logs Deep-Dive - From Raw Data to Threat Evidence

3
Comments
6 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.