NIST 800-61 – Detection

Detecting cybersecurity incidents effectively involves multiple layers of detection, which can vary based on the tools and configurations you have in place. This includes intrusion detection systems (IDS), intrusion prevention systems (IPS), next-gen firewalls, EDR and native capabilities like the…

RDP Digital Forensics

Forensicating RDP: Remote Desktop Protocol (RDP) is an integral part of Windows OS, allowing users to connect remotely to other systems. However, its exposure to the internet can (and often has) lead to unauthorised access if not properly secured, making…