April 24, 2020

Incident Response : Mitigation tasks library

By venkat

The objective is to have a set of standard and common containment and mitigation tasks that gets applied during a response. While handling an adversary it helps to know what all steps we can possibly do and then accordingly take action based on which part of the kill chain the adversary is in.

Mitigation tasks

Incident_Response_Mitigation_Tasks
CLICK & Experience live.

Tactical tasks

https://atc-project.github.io/react-navigator/

References

  • Strategies to mitigate by ACSC
  • Prioritized strategies to Mitigate Cyber Security Incidents by ACSC
  • US CERT Alert (AA20-245A) – Technical Approaches to Uncovering and Remediating Malicious Activity