IzyKnowsLinux auditd for Threat Detection [Final]Mapping behaviors to auditd log events8 min read·Mar 21, 2023--1--1
IzyKnowsLinux auditd for Threat Detection [Part 2]Part 1: Linux auditd for Threat Detection [Part 1]12 min read·Feb 10, 2023--1--1
IzyKnowsLinux Auditd for Threat DetectionA few years ago, I was asked to define an auditd configuration which would serve as the primary detection technology for a large…11 min read·Jan 26, 2022--1--1