Featured Posts

Various network nodes with security locks, representing encrypted traffic visibility
Network Security

How To Investigate Encrypted Traffic Without Decrypting It 

Most malicious traffic is encrypted, and in real environments, you usually don’t have the keys to inspect it. You can still investigate encrypted traffic effectively by ...

Read More
Representation of lateral movement: attack spreads through a network from a central point
Network Security

How To Detect Lateral Movement: A Step-by-Step Guide 

Blocks of data in a digital environment. Most of the blocks are clear but one is red, representing AI-powered anomaly detection
NDR

How Network Anomaly Detection Works (And Why It Matters)

All Posts

Network Operations

Cyber Incident Response Plan (Part 1)

The value of your cyber incident response plan becomes stronger as various global incidents unfold.  Just today, I was going

Read More
Security Operations

Incident Response Plan for Cyber Attacks: Part 2

This is part 2 of a two part post on Incident Response Plan for Cyber Attacks. The other post

Read More
Security Operations

Incident Response Plan for Cyber Attacks: Part 1

The Incident Response Plan (IRP) for Cyber Attacks outlines a fast, orderly and effective process for dealing with suspected

Read More