CVE List/Search
Website: http:///cve.mitre.org This is the list of common vulnerabilities and exposures (CVE) that everyone knows and loves. There is one CVE Record for each vulnerability in the catalog. The vulnerabilities…
11 Strategies of a World Class CSOC
Website: https://www.mitre.org/news-insights/publication/11-strategies-world-class-cybersecurity-operations-center This 452-page document(!) is a mammoth resource to learn about what SOCs do, how to build one, how to staff a SOC, and details on the functions it…
GitLab’s Open Source IR Playbooks
Website: https://gitlab.com/syntax-ir/playbooks/-/tree/main GitLab open sourced their playbooks for Incident Response as a way to give back to the community. It gives us procedural documentation, flowcharts, and activities you can adopt,…
Krebs On Security
From his site: Founded in 2009, KrebsOnSecurity is a top source for investigative reporting on cybercrime and Internet security. With 850,000 to 1.5 million pageviews a month and approximately 700,000…
Detection At Scale
The Detection at Scale Podcast is dedicated to helping security practitioners and their teams succeed at managing and responding to threats at a modern, cloud scale. Every episode is focused…
MITRE ATT&CK Framework
MITRE ATT&CK® is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific…
Tom Alrich – Blogger discussing sofware supply chain, regulatory issues, and much more
http://tomalrichblog.blogspot.com/ Software bill of materials (SBOMs) have become an increasingly important tool for improving the security and transparency of software products, and Tom Alrich has been actively involved in advocating…
CSF Tools – search and visualize NIST CSF and PF
Search, visualize, drill, and see relationships between frameworks such as NIST CSF, PF, NIST SP 800-53, CSA Cloud Controls, and CIS.
WinMerge – compare and merge files quickly
WinMerge is an Open Source differencing and merging tool for Windows. WinMerge can compare both folders and files, presenting differences in a visual text format that is easy to understand…
VirusTotal
I use this every few days or more often to have peace of mind about that link I’m about to click.