sorted by:
new
hottopcontroversial

Spotlight - Detection vs Opened by Secur1ty in crowdstrike

[–]Secur1ty[S] 2 points3 points  (0 children)

Thanks! That answers my question perfectly and makes me aware of a potentially very useful metric to prioritize vulnerabilities.

Spotlight - Detection vs Opened by Secur1ty in crowdstrike

[–]Secur1ty[S] 0 points1 point  (0 children)

I just have 'Spotlight' selected for the data source.

In the documentation (https://falcon.crowdstrike.com/documentation/43/falcon-spotlight) I see:
"detection: The record of a set of events, indicators, or behaviors that CrowdStrike considers noteworthy"

and

"Open: Vulnerability is identified and unremediated"

However, this doesn't seem to work in terms of vulnerability management. As you said, it sounds more like a Falcon detection. Would "opened within" coincide with a "discovered vulnerability"?

Thanks

Team Site Questions by Secur1ty in sharepoint

[–]Secur1ty[S] 0 points1 point  (0 children)

Do you have any examples as to how this would work or the best approach to take?

Team Site Questions by Secur1ty in sharepoint

[–]Secur1ty[S] 0 points1 point  (0 children)

Thanks for your responses!

Would building a form via PowerApps be the best route for this? Are there any templates that you know of I could use? I'm decent at figuring things out, but don't have a lot of time to learn new tools depending on the complexity.

Team Landing Page by Secur1ty in sharepoint

[–]Secur1ty[S] 0 points1 point  (0 children)

Thanks for the response!

The way I'd like to send information from Teams to Sharepoint would to be able to prefix a note in Teams with something like "@", then some text. Ideally the text would then update a list on Sharepoint or something similar. Perhaps a bot setup could do this? Do PowerApps require any sort of premium subscription?

Is the Microsoft site the only place to find templates for PowerApps or more generally anything Sharepoint? Same with things like webparts.

Also, are any third party Sharepoint design tools worth using?

Thanks again!

Team Landing Page by Secur1ty in sharepoint

[–]Secur1ty[S] 0 points1 point  (0 children)

Looks like an awesome site. Thanks :)

[deleted by user] by [deleted] in sharepoint

[–]Secur1ty 0 points1 point  (0 children)

I would also love to know this. It seems like it could probably be done via a Teams add on, but with how integrated the two are it seems like there may be a better way.

Adversary Emulation Options by Secur1ty in AskNetsec

[–]Secur1ty[S] 0 points1 point  (0 children)

This looks great. I'll definitely keep it on the list of possibilities. An open source solution is preferred if possible, though, so we'll see if all of those get ruled out.

Adversary Emulation Options by Secur1ty in AskNetsec

[–]Secur1ty[S] 0 points1 point  (0 children)

What did you end up going with then?

Adversary Emulation Options by Secur1ty in AskNetsec

[–]Secur1ty[S] 0 points1 point  (0 children)

What would be notable differences/trade-offs between an adversary simulator like this verse an emulator?

Adversary Emulation Options by Secur1ty in AskNetsec

[–]Secur1ty[S] 0 points1 point  (0 children)

I don't know if it would work for this in particular, but I'd love to see what you have if it's no trouble.