wriotsec
open-menu closeme
Blog
Write-ups
About
Contact
Search
github youtube

  • Exploring Windows Event Logs and Elastic Security for Incident Response

    calendar Jan 31, 2023 · 8 min read · Windows Security Elastic  ·
    Share on: twitter facebook linkedin copy
    Exploring Windows Event Logs and Elastic Security for Incident Response

    Elastic Security is incredibly useful for threat hunting especially with the success of tools like RockNSM and the HELK project. But what about hunting through old logs aided by detection tools that threat hunters use? How feasible is it to use Elastic Security if just want to stand it up the tool and throw some data …


    Read More

  • Setting up WSL, Ansible, and Packer for DevOps

    calendar Dec 31, 2021 · 8 min read · Ansible DevOps  ·
    Share on: twitter facebook linkedin copy
    Setting up WSL, Ansible, and Packer for DevOps

    WSL stands for Windows Subsystem for Linux. It allows Windows to run a lightweight Linux environment for running Linux binaries on Windows. I have not set it up from scratch by myself but have used it in the past with lab VM's like the one associated with Black Hills Information Security's Pay What You Can courses. …


    Read More

Keith Wright

Documenting a place for my thoughts, projects, and ideas around information security and technology.
Read More

Featured Posts

  • Exploring Windows Event Logs and Elastic Security for Incident Response
  • Setting up WSL, Ansible, and Packer for DevOps

Recent Posts

    Categories

    DEVOPS 1 SECURITY 1

    Tags

    ANSIBLE 1 DEVOPS 1 ELASTIC 1 SECURITY 1 WINDOWS 1
    wriotsec

    Copyright  WRIOTSEC. All Rights Reserved

    to-top

    This website uses cookies to ensure you get the best experience.