Michael Vilshin, Author at CardinalOps

Complete Guide to Auditing Object Access Events

“Absence of evidence is not evidence of absence.” Evidence is the backbone of every investigation, both in regular crime and in cyber crime. The key for effective incident response when it comes (and nowadays, sooner
Closing the Gaps in Linux Auditing & Detection Strategies

Linux systems are often overlooked when setting up security auditing and threat detection strategies. The main reason is that Linux auditing is far less explored by the security community than Windows auditing. A survey done