Defensive Security

Defensive Security #

Table of Contents #

Filtering (content, DNS, endpoint)#

[ h ] Zorus

[ y ] 02-14-2023. Lawrence Systems. “Zorus Web Filtering Demo:Protect & Monitor Endpoints Anywhere Your Users Work”.
[ y ] 07-12-2022. Lawrence Systems. “Content Filtering Solutions Using Firewall Or Endpoint Agents: Zorus, pfsense, Arista Untangle”.

Firewall #

[ h ][ w ] Arista Edge (formerly Untangle)
[ h ][ w ] Firewalla
- [ y ] 08-09-2023. Lawrence Systems. “My Thoughts on the Firewalla Firewall…”.
[ h ][ w ] Fortinet FortiGate
[ h ][ w ] GlassWire
[ h ][ w ] Meraki
[ h ][ w ] m0n0wall
[ h ][ w ] OPNsense [ reddit ]
- [ y ] 04-01-2024. Dave’s Garage. “OPNSense: Protect Your Home LAN With a Transparent Filtering Bridge with Step by Step Instructions”.
- [ y ] 07-17-2023. Dev Odyssey. “Your network is wide open! // A Beginner’s Guide to Firewall Rules in OPNsense”.
- [ y ] 11-04-2023. Home Network Guy. “Beginner’s Guide to Set up a Full Network using OPNsense”.
- [ y ] 06-07-2023. Home Network Guy. “Set up a Full Network using OPNsense (Part 3: Cisco Switch)”.
- [ y ] 04-24-2023. Home Network Guy. “Set up a Full Network using OPNsense (Part 2: OPNsense)”.
- [ y ] 04-08-2023. Home Network Guy. “Set up a Full Network using OPNsense (Part 1: Overview)”.
- [ y ] 03-27-2021. Lawrence Systems. “pfsense VS OPNSense”.
- [ y ] 10-26-2023. Mactelecom Networks. “Switching from PFsense to OPNsense? Here’s a basic setup”.
- [ y ] 03-23-2024. ShortCircuit. “Our BIG network upgrade! - OPNsense DEC4280”.
- [ y ] 10-25-2023. Tailscale. “A Homelabbers Networking Playground with Opnsense, Proxmox, VLANs and Tailscale”.
[ h ][ w ] pfSense [ reddit ]
- [ h ] Netgate
- [ h ] 02-20-2023. Lawrence Systems. “Which Hardware to Choose For pfsense? Netgate VS Protectli, Qotom, Yanling, etc…”.
- [ y ] 12-29-2021. Lawrence Systems. “Basic Setup and Configuring pfsense Firewall Rules For Home”.
- [ y ] 01-17-2022. Mactelecom Networks. “UDM Pro Behind pfsense configuration”.
- [ y ] 05-16-2020. Techno Tim. “How to Virtualize Your Home Router / Firewall Using pfSense”.
[ h ][ w ] Protectli
[ h ][ w ] Sophos
[ h ][ w ] Ubiquiti UniFi
- [ h ] HostiFi
[ h ][ w ] Untangle (now Arista Edge) [ reddit ]

Lawrence Systems

[ y ] 07-29-2023. Lawrence Systems. “A Detailed Comparison of The Latest pfSense and UniFi Firewalls in July 2023”.
[ y ] 04-01-2023. Lawrence Systems. “2023 Firewall Features Compared: pfsense | Arista | UniFi | Sophos | Fortinet | Meraki & What We Use”.
[ y ] 05-17-2021. Lawrence Systems. “2021 Firewall Review, Feature Comparison and Recommendations”.
[ y ] 03-19-2021. Lawrence Systems. “Firewalls With Working Wireguard: OPNSense, VyOS and Untangle.”.

IDPS #

[ h ][ d ][ g ][ w ] Snort
- [ y ] 10-18-2023. Lawrence System. “How To Secure pfsense with Snort: From Tuning Rules To Understanding CPU Performance”.
[ h ][ d ][ g ][ w ] Suricata
[ h ][ d ][ g ][ w ] Wazuh
- [ y ] 07-19-2023. NetworkChuck. “you need this FREE CyberSecurity tool”.
- [ y ] 03-29-2024. Techdox. “Secure Your Self-Hosted Network with Wazuh”.
[ h ][ d ][ g ][ w ] Zeek

Log Analysis #

[ h ][ w ] Graylog

Reverse Proxy #

[ h ] Cloudflare Tunnel
- [ y ] 12-30-2022. Lawrence Systems. “Using Cloudflare Tunnels For Hosting & Certificates Without Exposing Ports On Your Firewall”.
- [ y ] 12-14-2022. NetworkChuck. “EXPOSE your home network to the INTERNET!! (it’s safe)”.
[ h ] HAProxy
- [ y ] 08-15-2023. Lawrence Systems. “How To Guide For HAProxy and Let’s Encrypt on pfSense: Detailed Steps for Setting Up Reverse Proxy”.
[ h ] Nginx
- [ y ] 12-02-2020. Akamai Developer. “How to Set Up an NGINX Reverse Proxy”.
- [ y ] 09-09-2021. Mehul - Codedamn. “What is NGINX and how reverse proxies work?”.
- [ y ] 06-08-2021. NGINX. “Configure NGINX as a Reverse Proxy”.
[ h ] Traefik
- [ y ] 08-06-2022. Techno Tim. “Wildcard Certificates with Traefik + cert-manager + Let’s Encrypt in Kubernetes Tutorial”.
- [ y ] 04-24-2021. Techno Tim. “Put Wildcard Certificates and SSL on EVERYTHING - Traefik Tutorial”.

[ y ] 03-13-2024. ByteByteGo. “Reverse Proxy vs API Gateway vs Load Balancer”.
[ y ] 10-25-2022. ByteByteGo. “Proxy vs Reverse Proxy (Real-world Examples)”.
[ y ] 06-12-2023. PowerCert Animated Videos. “Proxy vs Reverse Proxy Explained”.

SIEM #

[ h ][ d ][ g ][ w ] Elastic Stack
- [ d ] Kibana
[ h ][ d ][ g ][ w ] Splunk

[ y ] 01-12-2024. Gerald Auger, PhD - Simply Cyber. “Build a Powerful Home SIEM Lab Without Hassle! (Step by Step Guide)”.

Packet Analysis #

[ h ][ w ] Wireshark

VPN #

[ h ] TailScale
[ h ] Wireguard

Resources #

[ h ][ w ] HAProxy
[ h ][ d ][ g ][ w ] Security Onion
[ h ][ d ][ g ][ w ] Sguil

Terms #

[ w ] Computer Security Incident Management
[ w ] Deep Packet Inspection (DPI)
[ w ] Data Logger
[ w ] Firewall
- [ w ] firewall comparison
- [ w ] firewall+router distros
[ w ] Hardening
[ w ] Host-Based Intrusion Detection & Prevention (HIDPS)
[ w ] Information Security Operations Center (ISOC)
[ w ] Intrusion Detection & Prevention (IDPS)
[ w ] Log
[ w ] Log Analysis
[ w ] Log Management
[ w ] Network-Based Intrusion Detection & Prevention (NIDPS)
[ w ] Network Monitoring
[ w ] Next-Generation Firewall (NGFW)
[ w ] Security Information and Event Management (SIEM)
[ w ] Security Operations Center (SOC)
[ w ] Security Policy
[ w ] Vulnerability Management

Texts #

Brotherston, Lee & Amanda Berlin. (2017). Defensive Security Handbook: Best Practices for Securing Infrastructure. O’Reilly.
Julian, Mike. (2017). Practical Monitoring: Effective Strategies for the Real World. O’Reilly.
White, Alan & Ben Clark. (2017). BTFM Blue Team Field Manual.

Elastic Stack #

Kibana

Docs

Logstash

Beats

Filebeat

Metricbeat

Observability Guide