Shortly before the festival, the American training institute SANS (SysAdmin, Audit, Networking and Security), known for its list of top 20 vulnerabilities, will delight security and network experts with a compilation of 150 open source security tools that are available free of charge. They all come from SANS instructors, writes the institute, and are intended to help those responsible to implement a better level of security.
The list is divided into various categories and sub-categories. Tools for blue teams, DFIR (Digital Forensics & Incident Response), penetration testing, cloud security and more are represented. In the description part of the list, which also names the authors, the tools that are usually uploaded to GitHub are linked. The list is here download (PDF).
Security Audits
SANS also published a white paper on Windows security audit recommendations related to malware detection on Windows networks. To do this, security teams use Windows Security Event Logs.
While for many, true to the motto “a lot helps a lot”, everything is first logged and examined later, the whitepaper breaks a lance in favor of more quality than quantity. The 26-page document is also available free of charge.
(ur)
