SIEM, EDR, XDR, MDR & SOAR | Cybersecurity Tools and Services | Threat Monitoring
Рет қаралды 72,899
2 жыл бұрынHey everyone! Today's video is going to be on various cybersecurity tools, including SIEM, EDR (endpoint detection and response), XDR (extended detection and response), MDR (managed detectionand response), and SOAR (security orchestration, automation, and response). These are tools that an organization may choose to use to defend their network. As a SOC analyst, your job may be to monitor the SIEM and respond to alerts coming from your EDR solution. You might also use a SOAR solution where you create workflows and specialize in the automation side of cybersecurity. Having a fundamental understanding of these five tools will help you be prepared not only for the Security+ but also prospective interviews. As always, thank you so much for watching, and I hope you find this video beneficial!
cybergraymattir?t...
Links: www.crowdstrike.com/cybersecu...
www.crowdstrike.com/cybersecu...
www.sentinelone.com/blog/unde...
First track: Over The Ocean by | e s c p | escp-music.bandcamp.com
Music promoted by www.free-stock-music.com
Attribution 4.0 International (CC BY 4.0)
creativecommons.org/licenses/...
Second track: Lazy Aftermoon by | e s c p | escp-music.bandcamp.com
Music promoted by www.free-stock-music.com
Attribution 4.0 International (CC BY 4.0)
creativecommons.org/licenses/...
@NK-iw6rq 11 ай бұрын
One of the best videos i've seen explaining all of this !
@bluejay8972 Жыл бұрын
This is well-explained and adheres to industry standard. Great job.
@cybergraymatter Жыл бұрын
Thank you so much! I hope you stick around and check out my upcoming videos :)
@manojmahajan30 7 ай бұрын
Clear and crisp information, I was looking for something like this for a long time, thank you so much for sharing.. Already subscribed to your content.. 🙂
@sunderdase3511 Жыл бұрын
Nicely explained, thank you!
@rv1915 Жыл бұрын
Great video for eager learners
@Seansaighdeoir Күн бұрын
Very interesting and informative, thanks for sharing. Found the music somewhat distracting - good info doesn't need accompaniment.
@garrisonsimon Жыл бұрын
Thanks for this great video! I learned a lot!
@DunOpondo Жыл бұрын
Awesome video. 👍🏿
@brooklynzoo81 2 жыл бұрын
Great content, Thanks! Subscribed.
@cybergraymatter 2 жыл бұрын
Wow, thank you! :)
@gkcamden9050 Жыл бұрын
Nice overview of these tools. Concise and too the point! Thank you. Subscribed with the bell turned on!
@cybergraymatter Жыл бұрын
Thank you so much! It really means a lot! :)
@sametsahin-eh3qj 20 күн бұрын
cool video, next time you should put out the music
@syh7522 2 жыл бұрын
great content.. perfect job 👍👍
@cybergraymatter 2 жыл бұрын
Thank you so much for watching and leaving a comment!
@AboodSpiN 6 ай бұрын
Amazing video thank you so much!
@cybergraymatter 6 ай бұрын
You're so welcome!
@paragbarot2638 2 ай бұрын
I hope in next videos you will lower the background music. By the way this video is very informative.
@NostalgistGuy 8 ай бұрын
Thank you.
@951niels Жыл бұрын
great vid
@kareemelfetiany2042 Жыл бұрын
Thanks a lot.
@KeithChungMusic 11 ай бұрын
well explained
@arsalananwar3397 Жыл бұрын
nice info
@yuvrajsingh-un7xo 9 ай бұрын
Awesome explanation Mam Have you any idea of next-gen firewall
@alexanderyelich817 Жыл бұрын
Thanks!
@cybergraymatter Жыл бұрын
I appreciate it!
@DavidCorlette 2 ай бұрын
This video is good, but next-gen AV has leveraged behavioral detection for zero-days for a long time - well before EDRs came on the scene. The real distinction between an NGAV and an EDR is that NGAV tries to take a black-and-white approach - it is or is not malicious. If a threat is classified as malicious (by actual signature-type detection or by hitting some statistical threshold in behavioral detection) the threat will be blocked and quarantined. The difference with EDR is in the name - EDR will also notify (Detect) about "grey area" potential threats that can't be confidently classified as malicious, and provide the telemetry (events) needed so that a human can investigate and make a decision. EDRs also provide post-attack remediation (Response) tools such as device isolation, remote shells, etc. Good EDR solutions include comprehensive NGAV so that you don't waste a lot of time chasing potential threats that could easily have been blocked by an NGAV.
@shia4363 Жыл бұрын
Great video! Can you suggest EDR and XDR solutions?
@swathiguru 11 ай бұрын
Kudelski Security
@peteallennh Жыл бұрын
Great content! Lose the muzak 🙂
@cybergraymatter Жыл бұрын
Thanks for the comment! I am getting 50/50 on the music and have lowered it for more recent videos. It really helps with any background blips to have at least something.
@CrazyFanaticMan 2 жыл бұрын
How would I classify a MITRE ATT&CK attack as XDR, MDR or EDR?
@cybergraymatter 2 жыл бұрын
Thanks for your comment! I wouldn't classify an attack by the way it was detected. I hope this makes sense.
@ahmedyousufibrahim980 Жыл бұрын
Greate I give you subscribe ❤
@rdstill Жыл бұрын
The background music was really distracting
@cybergraymatter Жыл бұрын
Thanks for your reply! The levels were still a work in progress and vary depending on what device one is listening on. I have toned it down on newer videos.
@smileybuddy_ Жыл бұрын
Where u from? Country
@cybergraymatter Жыл бұрын
USA
@19ceda92 Жыл бұрын
would be a great video without that load music in the background..
@cybergraymatter Жыл бұрын
Thanks for leaving a comment! I have been working on an acceptable level for music. It's been a work in progress.
@AE-nt3jj Жыл бұрын
You also sound impatient with such speed of speech
@cybergraymatter Жыл бұрын
Thanks for your input! I'm a naturally fast speaker and try and slow things as it is. You're welcome to use the speed adjustment if you're having difficulty understanding.
@indosyncrasies 10 ай бұрын
why the music???? It just takes away from the otherwise good content you have created.
@cybergraymatter 9 ай бұрын
I thought it would add some excitement. I am considering reuploading without the music.
@GrowthMindset9 Жыл бұрын
Remove the background music, the content is good.
@cybergraymatter Жыл бұрын
Thanks for the comment! I have it to help with audio blips but have turned it down in more recent videos
@ctjmaughs Жыл бұрын
Amazed how wrong this video is. Alerts
@cybergraymatter Жыл бұрын
Thanks for your comment! I am happy to make any notations in the video if you've spotted an error. For the mention of alerts, events and incidents: Security events are continuously happening, as any changes could be a regular, everyday occurrence within the network. This means they aren't necessarily malicious. Alerts are still events, but they indicate a change or that warrants investigating. Finally, incidents can still be a singular event or alert, or a series of those. They may require a lengthy investigation with a report and can even be a breach at higher levels.
@ctjmaughs Жыл бұрын
@@cybergraymatter It seems your are going with the Mandiant Methodology of alerts, events and incidents. I definitely don't agree with it but I do understand. I go with the alerts are more like logs and multiple alerts can be part of an event. Incidents can comprise of multiple events and tend be higher fidelity.
@cybergraymatter Жыл бұрын
@ctjmaughs I've seen multiple ways things are classified within various organizations and industries for different reasons. Some places call an incident of any severity an incident, while others are called incident a or incident b, etc. I wouldn't say either is wrong but dependent upon the place; though, if it were me who was tasked with designing a program from the ground up, I would use the definitions shown in this video. In the link below, Daniel Miessler also mentions your variation of events and alerts and states that there are differences based on industry. danielmiessler.com/study/event-alert-incident/
@AE-nt3jj Жыл бұрын
You speak fast and sound like a robot. You did it on purpose
@ryanknight6360 7 ай бұрын
What a weird response lol. Slow the speed of the video down if you’re slow
Cyber Security Kings
Рет қаралды 23 М.
CyberPlatter
Рет қаралды 20 М.
The CISO Perspective
Рет қаралды 181 М.
Taylor Walton
Рет қаралды 91 М.
spline
Рет қаралды 515 М.
Blueberry Lutein
Рет қаралды 141 М.
PRO Hi-Tech
Рет қаралды 133 М.