Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Next revision		 Previous revision
btkb:start [2022/01/07 00:46] sebbtkb:start [2022/01/07 01:41] (current) seb
Line 1: Line 1:
 ====== Blue Team Knowledge Base ====== ====== Blue Team Knowledge Base ======
 Blue Team members are the defenders of computer networks and systems. Below you shall find practical security guides, written to help you secure your networks and systems, and longer articles covering the theory of Cyber Defense (i.e. Cybersecurity Frameworks). Blue Team members are the defenders of computer networks and systems. Below you shall find practical security guides, written to help you secure your networks and systems, and longer articles covering the theory of Cyber Defense (i.e. Cybersecurity Frameworks).
 +
 +----
  
 ===== Practical Guides ===== ===== Practical Guides =====
  
 ==== Desktop Security ==== ==== Desktop Security ====
 +
 +=== General Guidelines for Desktops ===
 +  * Use an OS that is still supported by the vendor and receives security updates regularly.
 +  * Install security updates at least monthly.
 +  * Use a reasonably [[btkb:browsers|secure browser]].
 +  * Enable the [[btkb:hostfirewall|host firewall]] that comes with the OS.
 +  * Install an [[btkb:antivirus|Antivirus]] Program.
 +  * Don't use the computer with administrative privileges.
 +  * If the device is mobile (laptops), [[btkb:fulldiskencryption|encrypt the hard drive]].
 +
 +=== Security Guides for Desktop OS ===
   * [[btkb:linux-desktop|Securing Linux Desktop]]   * [[btkb:linux-desktop|Securing Linux Desktop]]
   * [[btkb:mac-os|Securing Macs]]   * [[btkb:mac-os|Securing Macs]]
   * [[btkb:windows-desktop|Securing Windows Desktop]]   * [[btkb:windows-desktop|Securing Windows Desktop]]
 +
 +=== Advanced Desktop Security ===
 +  * [[btkb:edr|Endpoint Detection & Response]]
 +  * [[btkb:desktopprivileges|Privilege Management]]
 +
 +----
  
 ==== Server Security ==== ==== Server Security ====
  
-=== General Guidelines for any type of server ===+=== General Guidelines for Servers ===
   * Use an OS that is still supported by the vendor and receives security updates regularly.   * Use an OS that is still supported by the vendor and receives security updates regularly.
   * Only install software that is actually needed for the specific role of the server.   * Only install software that is actually needed for the specific role of the server.
   * Patch all software on the server at least monthly.   * Patch all software on the server at least monthly.
-  * Enable the host firewall that comes with the server's OS.+  * Enable the [[btkb:hostfirewall|host firewall]] that comes with the server's OS.
   * Change all default password to complex and long passwords.   * Change all default password to complex and long passwords.
  
Line 21: Line 40:
   * [[btkb:linux-server|Securing Linux Servers]]   * [[btkb:linux-server|Securing Linux Servers]]
   * [[btkb:windows-server|Securing Windows Servers]]   * [[btkb:windows-server|Securing Windows Servers]]
 +
 +----
  
 ===== Theory of Cyber Defense ===== ===== Theory of Cyber Defense =====
   * [[btkb:nistcsf:start|NIST Cyber Security Framework (NIST-CSF)]]   * [[btkb:nistcsf:start|NIST Cyber Security Framework (NIST-CSF)]]
  
 +----
 +
 +~~DISCUSSION~~