Source Zero

The Source Zero platform is a community of Optiv’s skilled individuals doing research and sharing their expertise. The Source Zero Tools are resources that provide actionable support and demonstrations around research initiatives.

MS-Defender-ATP-OptivCon-Video-Blog-Blue_Images_2grid images (476x210)

Aligning Defender ATP Alerts to MITRE ATT&CK - Video Demonstration

June 30, 2020

How to prioritize efforts based on alert information from Microsoft Defender ATP, Logic Apps, and Log Analytics.

See Details

Blog

Brute Force Account Testing Using Burp Intruder

June 19, 2020

Burp Suite’s Intruder tool can be used to automate testing for weak/default passwords.

See Details

Blog

Digging Your Talons In – New Take On Password Guessing

June 19, 2020

Talon automates a password guessing technique targeting Kerberos and LDAP within the Windows Active Directory environment.

See Details

Tool

Digging Your Talons In – New Take On Password Guessing

June 19, 2020

Talon automates a password guessing technique targeting Kerberos and LDAP within the Windows Active Directory environment.

See Details

Blog

Infrastructure as Code: Terraform, AWS EKS, Gitlab & Prisma Cloud

June 11, 2020

A how to guide using Gitlab, Hashicorp Terraform Cloud, AWS EKS and Palo Alto Networks Prisma Cloud to build and secure a Kubernetes cluster.

See Details

Blog

Visual Lock Picking Workstation

June 11, 2020

The Visual Lock Picking Workstation is a Raspberry Pi enclosure which makes it possible to capture live video from a cutaway lock.

See Details

Tool

Visual Lock Picking Workstation

June 11, 2020

The Visual Lock Picking Workstation displays the inner workings of a lock while teaching lock picking.

See Details

Blog

Azure API Management Tracing Helper

June 11, 2020

Azure API Management Tracing Helper is a Burp Suite extension to aid in testing APIs hosted on the Azure API Management platform.

See Details

Tool

Azure API Management Tracing Helper

June 11, 2020

This paper explores the Burp Suite extension for Azure API Management to automatically identify gateway misconfigurations and to display the tracing....

See Details

Blog

Microsoft Defender ATP Telemetry: Workbook Visualizations (Part 3)

June 11, 2020

Part 3 of series: Prioritizing Microsoft Defender ATP endpoint alert telemetry with MITRE ATT&CK.

See Details

Blog

Microsoft Defender ATP Telemetry: Azure Log Analytics Workspace (Part 2)

June 11, 2020

This post demonstrates how to pull DATP data into Azure Log Analytics workspaces using a Logic App.

See Details

Blog

Microsoft Defender ATP Telemetry: Viewing MITRE ATT&CK Context (Part 1)

June 11, 2020

This post helps prioritize efforts based on alert information you're already receiving from Microsoft #Defender #ATP.

See Details

Blog

No license, express or implied, to any intellectual property or other content is granted or intended hereby.
This blog is provided to you for information purposes only. While the information contained in this site has been obtained from sources believed to be reliable, Optiv disclaims all warranties as to the accuracy, completeness or adequacy of such information.
Links to third party sites are provided for your convenience and do not constitute an endorsement by Optiv. These sites may not have the same privacy, security or accessibility standards.
Complaints / questions should be directed to Legal@optiv.com

OPTIV/SOURCE ZERO