When purchasing a SIEM it’s important to understand what data sources need ingested into the SIEM for monitoring. This white paper identifies the data most likely to be targeted by threat actors, the different types of attacks, and what data should be ingested into the SIEM for SOC analysts to monitor so they can identify a potential attack.
Using Microsoft Sentinel to Detect Confluence CVE-2022-26134 Exploitation
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is