That flow chart?? And demo?? Not too sure about that.. And here's why: You need a FireWall PFsense, an Enterprise managed switch, (maybe 2), and multiple devices logging events. Then, the logged events go into a centralized log aggregator. After which you place full PCAP taps on each network segment. Those will then be pushed to the centralized log aggregator. After that, the SIEM and Case management will pull from centralized logging. Lastly, you must be able to aggregate and correlate accross an Enterprise. To demonstrate this in a virtualized enviroment the guy needs to set up multiple DCs, Security Onion and about a dozen client VMs...That's just my 2 cents.
That flow chart?? And demo?? Not too sure about that.. And here's why:
You need a FireWall PFsense, an Enterprise managed switch, (maybe 2), and multiple devices logging events. Then, the logged events go into a centralized log aggregator. After which you place full PCAP taps on each network segment. Those will then be pushed to the centralized log aggregator. After that, the SIEM and Case management will pull from centralized logging. Lastly, you must be able to aggregate and correlate accross an Enterprise. To demonstrate this in a virtualized enviroment the guy needs to set up multiple DCs, Security Onion and about a dozen client VMs...That's just my 2 cents.
HD jakosc Panie Andrzeju by sie sprzydala
How he know the password while creating new user??? Answer pls
Maybe a default password? I don't know,. I stopped watching the vid after the flow chart.
27:30 : The system asks to set a password (and not enter an already defined one) for this new created user
video quality is so bad..... i cant see the screen... its blur...
Like si veniste a jalartela.