April 9, 2020

Playbook for Malicious Network Behavior: Malicious Traffic

By venkat

Alerts are generated when something suspicious is seen by one of the Network monitoring devices.

Network Security Tools:
IDS (Intrusion Detection System)
IPS (Intrusion Prevention System)
DLP (Data Loss Prevention)
SIEM (Security Incident and Event Management)
NBAD (Network Behavior Anomaly Detection)

Playbook

**Please right click & view image on new tab for enlarged image.**

Mitigation

https://cert.societegenerale.com/resources/files/IRM-5-Malicious-Network-Behaviour.pdf

References

Tagsmalicious network traffic Malware ransomware

About The Author

venkat

Venkat is founder of FlexibleIR. He brings 20 years of experience in building tools and products at Sun Microsystems, Intel, Novell, HP, Yahoo,Tesco and startups. He has developed test suites and frameworks for post silicon validation of the Xeon processor family (Fuzzing). He has worked deeply on UFS files system at SUN Microsystem. Was a security paranoid at Yahoo.

Playbook for Malicious Network Behavior: Malicious Traffic

Playbook

Mitigation

References

About The Author

Leave a Reply Cancel reply

Tags