Popular Articles

  1. Installing Security Onion w/ BRO

    Overview What is Security Onion? Security Onion (SO) is a Linux distrobution for intrusion detection, network security monitoring, and log management. It’s based on Ubuntu and contains Snort, Suricata, Bro, OSSEC, Sguil, Squert, ELSA, Xpli...
  2. Collecting Logs and Events from Windows Machines

    Explains how to obtain windows events from your windows machines to DefenseStorm.
  3. Download Links

    DefenseStorm Virtual Machine VMWare (OVA File) v1.1.5 Microsoft Hyper-V (Zip) v1.1.5 DefenseStorm Windows Agent https://windowsagent.defensestorm.com/dist/1.9.3/DefenseStorm.msi ...
  4. Advanced

    Managing PowerShell Current reports on the use of Windows PowerShell as an attack platform bring up the increased need to detect and prevent the abuse of our system administration ecosystem. The recent release of Mandiant’s M-Trends 2017 annu...
  5. FAQ's

    Common questions answered simply.
  6. The DefenseStorm Virtual Machine

    Information on how to install, upgrade, and configure your DVM.
  7. Gathering Data from Third-Party IT Systems

    This article provides links to third-parties for device setup as well as DefenseStorm specific instructions to ensure data is gathered.  CarbonBlack Defense What Anti-virus Reference https://github.com/DefenseStorm/cbdefenseEventLo...
  8. DVM Modifications (SNMP & accepting SSL)

    Overview Overview One of the many advantages of the DefenseStorm GRID is the level of customization and modifications available. Two of those options include,  Enabling the DVM to accept Syslog over TLS Setting to Receive SNMP Traps Ac...
  9. What Statements does the DefenseStorm GRID help you comply with?

    How we keep you in compliance with FFIEC Guidelines, and what you need to do.
  10. User Manual

    Welcome Welcome to DefenseStorm Put simply, DefenseStorm is a network security system for financial institutions. We monitor for suspicious activity, alert you when its found, and work with you to stop any potential attacks and prevent them from...