[B! incident-response] ishideoã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯

ishideo id:ishideo

incident-responseã«é–¢ã™ã‚‹ishideoã®ãƒ–ãƒƒã‚¯ãƒžãƒ¼ã‚¯ (47)

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

${{author_name}}$
{{author_name}}{{created}}
{{ #comment }}{{ comment }}{{ /comment }}
- {{ label }}

${{author_name}}$

{{{comment_expanded}}}

{{label}}

{{#is_bookmark}}ãƒªã‚¹ãƒˆ{{/is_bookmark}}{{^is_bookmark}}ãƒªãƒ³ã‚¯{{/is_bookmark}}

ãƒ‡ã‚¸ã‚¿ãƒ«ãƒ»ãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯ç ”ç©¶ä¼š
NPO Institute of Digital Forensics. NPOæ³•äºº ãƒ‡ã‚¸ã‚¿ãƒ«ãƒ»ãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯ç ”ç©¶ä¼š ã€’141-0031 æ±äº¬éƒ½å“å·åŒºè¥¿äº”åç”°7-15-4 ç¬¬ä¸‰èŠ±ç”°ãƒ“ãƒ«4ï¼¦ TELï¼FAXï¼š03-6431-8200 Em ailï¼šinfo@digitalforensic.jp
ishideo 2024/08/07
forensics

cybersecurity

japan

association

csirt

incident-response
ãƒªãƒ³ã‚¯
ãƒ‡ã‚¸ã‚¿ãƒ«ãƒ»ãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯èª¿æŸ»ãƒ»è§£æžå¯¾å¿œä¼æ¥ç´¹ä»‹ | ãƒ‡ã‚¸ã‚¿ãƒ«ãƒ»ãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯ç ”ç©¶ä¼š
ãƒ‡ã‚¸ã‚¿ãƒ«ãƒ»ãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯ç ”ç©¶ä¼šï¼ˆIDFï¼‰ã§ã¯ã€ãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯èª¿æŸ»ãƒ»è§£æžæ¥å‹™ã‚’è¡Œã£ã¦ã„ã‚‹å›£ä½“ä¼šå“¡ä¼æ¥ã«ã¤ã„ã¦ã®ç´¹ä»‹ã‚’ã“ã®ãƒ›ãƒ¼ãƒ ãƒšãƒ¼ã‚¸ã‚’é€šã˜ã¦è¡Œã„ã¾ã™ã€‚ ã“ã“ã§ã”ç´¹ä»‹ã™ã‚‹ä¼æ¥ã¯ã€æ—¢ã«IDFã®ãƒ›ãƒ¼ãƒ ãƒšãƒ¼ã‚¸ã§å…¬é–‹ã—ã¦ãŠã‚Šã¾ã™ã€Žå›£ä½“ä¼šå“¡ãƒªãƒ³ã‚¯ã€ã‚„ã€Žå›£ä½“ä¼šå“¡ã€Œè£½å“ãƒ»ã‚µãƒ¼ãƒ“ã‚¹åŒºåˆ†ãƒªã‚¹ãƒˆã€ã€ã«æŽ²è¼‰ã—ã¦ã„ã‚‹æƒ…å ±ã«åŠ ãˆã€ãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯èª¿æŸ»ãƒ»è§£æžæ¥å‹™ã‚’å®Ÿæ–½ã—ã¦ãŠã‚Šã€æŽ²è¼‰ã‚’å¸Œæœ›ã—ãŸä¼æ¥ã§ã™ã€‚ çš†æ§˜ãŒãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯èª¿æŸ»ãƒ»è§£æžæ¥å‹™ã‚’ä¾é ¼ã—ã‚ˆã†ã¨ã™ã‚‹éš›ã«ä¼æ¥é¸å®šã®ãŠå½¹ã«ç«‹ã¦ã°å¹¸ã„ã§ã™ã€‚ ãªãŠã€æŽ²è¼‰å›£ä½“ä¼šå“¡ä¼æ¥ã¯ã€ãƒ•ã‚©ãƒ¬ãƒ³ã‚¸ãƒƒã‚¯èª¿æŸ»ãƒ»è§£æžæ¥å‹™ã«é–¢ã™ã‚‹å½“è©²ç¤¾ã®å…¬é–‹æƒ…å ±ç‰ã«åŸºã¥ãã€æŽ²è¼‰æ™‚ç‚¹ã§ä¸é©åˆ‡ãªç¤¾ä¼šçš„äº‹æ¡ˆã‚„äº‹æ•…å ±å‘Šç‰ãŒå…¬çš„æ©Ÿé–¢ã«ã‚ˆã‚Šãªã•ã‚Œã¦ã„ãªã„å›£ä½“ä¼šå“¡ä¼æ¥ã¨ã—ã¦ãŠã‚Šã¾ã™ãŒã€IDFãŒå½“è©²ä¼æ¥ã®å®Ÿå‹™å†…å®¹ã«è²¬ä»»ã‚’è² ã†ã‚‚ã®ã§ã¯ãªãä¸é©åˆ‡ãªç¤¾ä¼šçš„äº‹æ¡ˆã‚„äº‹æ•…å ±å‘Šç‰ãŒã‚ã£ãŸå ´åˆã«ã¯ã€æŽ²è¼‰ã‚’å–ã‚Šæ¶ˆã™ã“ã¨ãŒã‚ã‚Šã¾ã™ã€‚ â€»æŽ²è¼‰é †ã¯ã€æŽ²è¼‰ã‚’
ishideo 2024/08/07
forensics

company

list

cybersecurity

japan

association

csirt

incident-response
ãƒªãƒ³ã‚¯
Home
ishideo 2024/07/22
blueteamhandbook

blue-team

incident-response

soc

cybersecurity
ãƒªãƒ³ã‚¯
ITã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢å‘ã‘ã®ãƒˆãƒ¬ãƒ³ãƒ‰æƒ…å ± | Forkwell Press ï¼ˆãƒ•ã‚©ãƒ¼ã‚¯ã‚¦ã‚§ãƒ«ãƒ—ãƒ¬ã‚¹ï¼‰
Forkwell Library ç¬¬48å›žç›®ã¯ã€Žè©³è§£ ã‚¤ãƒ³ã‚·ãƒ‡ãƒ³ãƒˆãƒ¬ã‚¹ãƒãƒ³ã‚¹ã€ã‚’å–ã‚Šä¸Šã’ã¾ã™ã€‚ã‚¤ãƒ³ã‚·ãƒ‡ãƒ³ãƒˆå¯¾å¿œã«ã¯ã€æ§˜ã€…ãªå°‚é–€åˆ†é‡Žã®çŸ¥è˜ã‚’å¿…è¦ã¨ã—ã€æ§˜ã€…ãªåˆ†é‡Žã®ãƒˆãƒ¬ãƒ¼ãƒ‹ãƒ³ã‚°ã‚’ç¶™ç¶šçš„ã«å—ã‘ã‚‹å¿…è¦ãŒã‚ã‚Šã¾ã™ã€‚æœ¬æ›¸ã¯ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ä¾µå®³ã‚’è©¦ã¿ã‚‹æ”»æ’ƒè€…ã®æ´»å‹•ã«å¯¾ã—ã€æ—¥å¸¸çš„ã«äºˆé˜²ãƒ»æ¤œçŸ¥ãƒ»å¯¾å¿œã‚’è¡Œã†å®Ÿå‹™å®¶ã«ã‚ˆã£ã¦æ›¸ã‹ã‚ŒãŸå®Ÿå‹™å®¶ã®ãŸã‚ã®æ›¸ç±ã§ã€2022å¹´1æœˆã«ç™ºå£²ã•ã‚Œã¾ã—ãŸã€‚ä»Šå›žã¯è¨³è€…ã®çŸ³å· æœä¹… æ°ã‚’æ‹›ãã€æœ¬æ›¸ã®æ¦‚èª¬ã‚„å®Ÿè·µçš„ãªæŠ€è¡“ã®å¦ã³æ–¹ã‚„æœ¬æ›¸ã«é–¢é€£ã™ã‚‹æŠ€è¡“ã®å¦ã³æ–¹ãªã©ã‚’è§£èª¬ã„ãŸã ãã¾ã™ã€‚
ishideo 2024/05/08
incident-response

csirt

forkwell

cybersecurity

blue-team
ãƒªãƒ³ã‚¯
OSINT for Incident Response (Part 2) - Black Hills Information Security
ishideo 2024/03/08
osint

incident-response

blackhillsinfosec

leakix

shodan

censys

cybersecurity
ãƒªãƒ³ã‚¯
OSINT for Incident Response (Part 1) - Black Hills Information Security
Being a digital forensics and incident response consultant is largely about unanswered questions. When we engage with a client, they know something bad happened or is happening, but they are uncertain of the â€œhow, when, where, and why.â€ A significant component of our job is to tease out the â€œknown knowns,â€ the â€œknown unknowns,â€ and effectively and efficiently help the client answer the following:
ishideo 2024/03/08
osint

incident-response

blackhillsinfosec

leakix

shodan

censys

cybersecurity
ãƒªãƒ³ã‚¯
Postmortem Template - PagerDuty Incident Response Documentation
Home Getting Started On-Call Being On-Call Who's On-Call? Alerting Principles Before an Incident What is an Incident? Severity Levels Different Roles Call Etiquette Complex Incidents During an Incident During an Incident External Communication Guidelines Security Incident After an Incident After an Incident Postmortem Process Postmortem Template Overview What Happened Contributing Factors Resoluti
ishideo 2024/03/03
what

pm

management

postmortem

template

incident-response

pagerduty
ãƒªãƒ³ã‚¯
ã€é›‘è¨˜ã€‘ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£æ‹…å½“ã®å–§å˜©è¡“ - 2LoD.sec
å‰å›žã®è¨˜äº‹ã§ã€ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ãƒžãƒãƒ¼ã‚¸ãƒ£ã¨ã—ã¦ã€Œã‚½ãƒ•ãƒˆã‚¹ã‚ãƒ«ã€ã‚³ãƒ³ãƒ”ãƒ†ãƒ³ã‚·ã€æ€§è³ªã€ãŒé‡è¦ã¨æ›¸ãã¾ã—ãŸã€‚ ã€Œã‚½ãƒ•ãƒˆã‚¹ã‚ãƒ«ã‚„ã‚³ãƒ³ãƒ”ãƒ†ãƒ³ã‚·ã€ã¨ã¯ã€èª²é¡Œã®æŠŠæ¡åŠ›ã€è§£æ±ºã¾ã§ã®æ–¹å‘æ€§ã®æ±ºã‚æ–¹ã€æ®µå–ã‚ŠåŠ›ã€ã‚³ãƒŸãƒ¥ãƒ‹ã‚±ãƒ¼ã‚·ãƒ§ãƒ³åŠ›ã€ãƒ—ãƒ¬ã‚¼ãƒ³åŠ›ãªã©æ§˜ã€…ã§ã™ã€‚ ã€Œæ€§è³ªã€ã¨ã¯ã€ç¶™ç¶šçš„ã«å‹‰å¼·ã§ãã‚‹ã‹ã€ç´ ç›´ã•ã¨ã—ãŸãŸã‹ã•ã‚’ã†ã¾ãä¸¡ç«‹ã§ãã‚‹ã‹ã€ä»–éƒ¨é–€ã¨æ‰ã‚ãŸæ™‚ã®æŠ¼ã—å¼•ãã«å¼·ã„ã‹ã€ä½•ã‹æˆã—é‚ã’ã‚‰ã‚Œãªã‹ã£ãŸæ™‚ã«ã¸ã“ãŸã‚Œãªã„ã‹ã€ã„ã–ã¨ã„ã†æ™‚ã«äººå‰ã§æŒ‡æ®ã™ã‚‹ã“ã¨ãŒå¥½ãã‹ã€ã¿ãŸã„ãªæ˜Žç¢ºã«å®šç¾©ã§ããªã„ãƒ¡ãƒ³ã‚¿ãƒ«é¢ã®éƒ¨åˆ†ãŒå¤šã„ã«ã‚ã‚Šã¾ã™ã€‚ ä¸Šè¨˜ã®ã†ã¡ç ”ä¿®ã‚„æ›¸ç±ã§ãƒã‚¦ãƒ„ãƒ¼ãŒç´¹ä»‹ã•ã‚Œã¦ã„ã‚‹ãƒ†ãƒ¼ãƒžã‚‚å¤šã€…ã‚ã‚Šã¾ã™ãŒã€ã€Œä»–éƒ¨é–€ã¨æ‰ã‚ãŸæ™‚ã®æŠ¼ã—å¼•ãã«å¼·ã„ã‹ã€ã¯ã‚ã¾ã‚Šè¦‹ãŸã“ã¨ãªã„ã‹ã‚‚ã¨æ€ã„ã€è‡ªåˆ†ã®çµŒé¨“ã¨æ€ã„ã‚’åˆ†è§£ã—ã¦ã¿ã¾ã—ãŸã€‚ ã“ã®è¨˜äº‹ã¯ã€ã‚ã‚‹æ„å‘³ã§ã¯è…¹ã®é»’ã„ã¨ã“ã‚ã‚’è¦‹ã›ã‚‹ã‚ˆã†ãªã€èªã¿æ‰‹ã«ã¨ã£ã¦ã¯å«Œæ‚ªæ„Ÿã‚’æŒã¤å†…å®¹ã‹ã‚‚ã—ã‚Œã¾ã›ã‚“ã€‚ ãã‚Œã§ã‚‚ã€ã“ã†ã„ã†æƒ…å ±ã‚’
ishideo 2024/01/23
cybersecurity

management

risk

incident-response

csirt

team
ãƒªãƒ³ã‚¯
ã‚µã‚¤ãƒãƒ¼æ”»æ’ƒè¢«å®³ã«ä¿‚ã‚‹æƒ…å ±ã®æ„å›³ã—ãªã„é–‹ç¤ºãŒã‚‚ãŸã‚‰ã™æƒ…å ±å…±æœ‰æ´»å‹•ã¸ã®å½±éŸ¿ã«ã¤ã„ã¦ - JPCERT/CC Eyes
ã¯ã˜ã‚ã« å…ˆæ—¥ã€JPCERT/CCãŒäº‹å‹™å±€ã¨ã—ã¦å‚åŠ ã—ãŸã€å°‚é–€çµ„ç¹”åŒå£«ã®æƒ…å ±å…±æœ‰æ´»å‹•ã®æ´»æ€§åŒ–ã«å‘ã‘ãŸã€Œã‚µã‚¤ãƒãƒ¼æ”»æ’ƒã«ã‚ˆã‚‹è¢«å®³ã«é–¢ã™ã‚‹æƒ…å ±å…±æœ‰ã®ä¿ƒé€²ã«å‘ã‘ãŸæ¤œè¨Žä¼šã€ã®å ±å‘Šæ›¸ãŒå…¬é–‹ã•ã‚Œã€é–¢é€£æˆæžœç‰©ã®ãƒ‘ãƒ–ãƒªãƒƒã‚¯ã‚³ãƒ¡ãƒ³ãƒˆãŒå§‹ã¾ã‚Šã¾ã—ãŸã€‚ çµŒæ¸ˆç”£æ¥çœã€€ã‚µã‚¤ãƒãƒ¼æ”»æ’ƒã«ã‚ˆã‚‹è¢«å®³ã«é–¢ã™ã‚‹æƒ…å ±å…±æœ‰ã®ä¿ƒé€²ã«å‘ã‘ãŸæ¤œè¨Žä¼š https://www.meti.go.jp/shingikai/mono_info_service/sangyo_cyber/cyber_attack/index.html JPCERT/CCã¯ã“ã‚Œã¾ã§ã«ä¸‹è¨˜ã®å–ã‚Šçµ„ã¿ã‚’é€šã˜ã¦ã€æƒ…å ±å…±æœ‰æ´»å‹•ã®ä¿ƒé€²ã«å‘ã‘ãŸãƒ«ãƒ¼ãƒ«æ•´å‚™ã«å–ã‚Šçµ„ã‚“ã§ãã¾ã—ãŸã€‚ ä»¤å’Œï¼’å¹´åº¦ç·å‹™çœã€Œã‚µã‚¤ãƒãƒ¼æ”»æ’ƒã®è¢«å®³ã«é–¢ã™ã‚‹æƒ…å ±ã®æœ›ã¾ã—ã„å¤–éƒ¨ã¸ã®æä¾›ã®ã‚ã‚Šæ–¹ã«ä¿‚ã‚‹èª¿æŸ»ãƒ»æ¤œè¨Žã®è«‹è² ã€ã®èª¿æŸ»å ±å‘Šï¼ˆ2021å¹´7æœˆå…¬é–‹ï¼‰[1] ã€Œã‚µã‚¤ãƒãƒ¼æ”»æ’ƒè¢«å®³ã«ä¿‚ã‚‹æƒ…å ±ã®å…±æœ‰ãƒ»å…¬è¡¨ã‚¬ã‚¤ãƒ€ãƒ³ã‚¹ã€ï¼ˆ2023å¹´3
ishideo 2023/12/06
vulnerability

jpcertcc

threat

csirt

incident-response

disclose

cyberattack
ãƒªãƒ³ã‚¯
Ransomware Incident Management | ISACA
ishideo 2023/10/01
ransomware

incident-response

management

incident

pdf

isaca
ãƒªãƒ³ã‚¯
é–¢ä¿‚æ³•ä»¤Qï¼†Aãƒãƒ³ãƒ‰ãƒ–ãƒƒã‚¯ - NISC
å†…é–£å®˜æˆ¿å†…é–£ã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚»ãƒ³ã‚¿ãƒ¼ï¼ˆNISCï¼‰ã¯ã€ã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–ã«ãŠã„ã¦å‚ç…§ã™ã¹ãé–¢ä¿‚æ³•ä»¤ã‚’Q&Aå½¢å¼ã§è§£èª¬ã™ã‚‹ã€Œã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£é–¢ä¿‚æ³•ä»¤Q&Aãƒãƒ³ãƒ‰ãƒ–ãƒƒã‚¯ã€ï¼ˆä»¥ä¸‹ã€Œæœ¬ãƒãƒ³ãƒ‰ãƒ–ãƒƒã‚¯ã€ã¨ã„ã„ã¾ã™ã€‚ï¼‰ã‚’ä½œæˆã—ã¦ã„ã¾ã™ã€‚ ä¼æ¥ã«ãŠã‘ã‚‹å¹³æ™‚ã®ã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–åŠã³ã‚¤ãƒ³ã‚·ãƒ‡ãƒ³ãƒˆç™ºç”Ÿæ™‚ã®å¯¾å¿œã«é–¢ã™ã‚‹æ³•ä»¤ä¸Šã®äº‹é …ã«åŠ ãˆã€æƒ…å ±ã®å–æ‰±ã„ã«é–¢ã™ã‚‹æ³•ä»¤ã‚„æƒ…å‹¢ã®å¤‰åŒ–ç‰ã«ä¼´ã„ç”Ÿã˜ã‚‹æ³•çš„èª²é¡Œç‰ã‚’å¯èƒ½ãªé™ã‚Šå¹³æ˜“ãªè¡¨è¨˜ã§è¨˜è¿°ã—ã¦ã„ã¾ã™ã€‚ ä¼æ¥å®Ÿå‹™ã®å‚è€ƒã¨ã—ã¦ã€åŠ¹çŽ‡çš„ãƒ»åŠ¹æžœçš„ãªã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–ãƒ»æ³•ä»¤éµå®ˆã®ä¿ƒé€²ã¸ã®ä¸€åŠ©ã¨ãªã‚Œã°å¹¸ã„ã§ã™ã€‚ â€»Ver2.0ã¯ã€ä»¤å’Œ5å¹´9æœˆã«ã€ã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚’å–ã‚Šå·»ãç’°å¢ƒå¤‰åŒ–ã€é–¢ä¿‚æ³•ä»¤ãƒ»ã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ç‰ã®æˆç«‹ãƒ»æ”¹æ£ã‚’è¸ã¾ãˆã€é …ç›®ç«‹ã¦ãƒ»å†…å®¹ã®å……å®Ÿã€æ›´æ–°ã‚’è¡Œã„æ”¹è¨‚ã•ã‚ŒãŸã‚‚ã®ã§ã™ã€‚ Qï¼†Aã§å–ã‚Šä¸Šã’ã¦ã„ã‚‹ä¸»ãªãƒˆãƒ”ãƒƒã‚¯ã‚¹ã«ã¤ã„ã¦ ã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£åŸºæœ¬æ³•é–¢é€£ ä¼šç¤¾æ³•
ishideo 2023/09/28
nisc

japan

cybersecurity

ransomware

incident-response

csirt

law

victim

intelligence

threat
ãƒªãƒ³ã‚¯
åˆ¶å¾¡ã‚·ã‚¹ãƒ†ãƒ ã«ãŠã‘ã‚‹è³‡ç”£ç®¡ç†ã‚¬ã‚¤ãƒ‰ãƒ©ã‚¤ãƒ³ | IPA
ishideo 2023/09/21
ics

ot

scada

checklist

guideline

pdf

ipa

asset

threat

incident-response
ãƒªãƒ³ã‚¯
global-irt/api.md at master Â· FIRSTdotorg/global-irt
ishideo 2023/09/17
api

global-irt

information-gathering

rest

incident-response

csirt

json

github
ãƒªãƒ³ã‚¯
Home
ishideo 2023/09/12
cybersecurity

threat

incident-response
ãƒªãƒ³ã‚¯
GitHub - hevnsnt/Awesome_Incident_Response: Awesome Incident Response
ishideo 2023/06/30
awesome

list

incident-response

csirt

github

cybersecurity
ãƒªãƒ³ã‚¯
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ã‚’ç›®æŒ‡ã™äººã«çŸ¥ã£ã¦ãŠã„ã¦ã»ã—ã„çµ„ç¹” - FFRIã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ãƒ–ãƒã‚°
ã¯ã˜ã‚ã« ç ”ç©¶é–‹ç™ºç¬¬äºŒéƒ¨ãƒªãƒ¼ãƒ‰ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢ã®ä¸€ç€¬ã§ã™ã€‚ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚¨ãƒ³ã‚¸ãƒ‹ã‚¢åŒå£«ã®ä¼šè©±ã§ã¯ã€ã€Œ"ã‚·ã‚µ"ãŒæœ€è¿‘ã¾ãŸãƒ¬ãƒãƒ¼ãƒˆå‡ºã—ã¦ã„ã¦â€¦ã€ã¨ã‹ã€Œ"ã‚¢ã‚¤ãƒ”ãƒ¼ã‚¨ãƒ¼"ã‹ã‚‰æ³¨æ„å–šèµ·å‡ºã¦ãŸãã€ã¨ã„ã£ãŸã€åˆå¦è€…ã«ã¯è¬Žã®å˜èªžãŒãŸãã•ã‚“å‡ºã¦ãã¾ã™ã€‚æœ¬è¨˜äº‹ã§ã¯ã€ãã†ã„ã£ãŸä¼šè©±ã«å‡ºã¦ãã‚‹å˜èªžã®ã†ã¡ã€å›½å†…å¤–ã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£é–¢é€£ã®ä¸»ãªçµ„ç¹”ã«ã¤ã„ã¦ã¾ã¨ã‚ã¾ã—ãŸã€‚ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã«èˆˆå‘³ãŒã‚ã‚Œã°ã€ã“ã“ã«æŒ™ã’ãŸçµ„ç¹”ã¨ã€ãã®çµ„ç¹”ãŒé–¢ã‚ã‚‹æ”¿ç–ã‚„æ´»å‹•ã«ã¤ã„ã¦ã€äº‹å‰ã«æŠ‘ãˆã¦ãŠã„ã¦æã¯ã‚ã‚Šã¾ã›ã‚“ã€‚ã“ã‚Œã‹ã‚‰ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚’å¦ã¼ã†ã¨ã„ã†æ–¹ã®å‚è€ƒã«ãªã‚Œã°å¹¸ã„ã§ã™ã€‚ ãªãŠã€è¨˜è¼‰ã—ãŸæƒ…å ±ã¯ã™ã¹ã¦åŸ·ç†æ™‚ç‚¹ (2023 å¹´ 6 æœˆ) ã®ã‚‚ã®ã§ã™ã€‚ ã€2023/06/30 è¿½è¨˜ã€‘NISC ãŠã‚ˆã³ ENISA ã®æ—¥æœ¬èªžåç§°ã‚’ä¿®æ£ã€CISA ã®èªã¿æ–¹ã«ã¤ã„ã¦ä¿®æ£ãƒ»è¿½è¨˜ã€NCSC ã«ã¤ã„ã¦è¿½è¨˜ã—ã¾ã—ãŸã€‚ ã¯ã˜ã‚ã« ä¸å¤®çœåº å†…é–£ã‚µã‚¤ãƒãƒ¼ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚»ãƒ³ã‚¿
ishideo 2023/06/30
cybersecurity

gov

japan

association

csirt

incident-response

ffri
ãƒªãƒ³ã‚¯
GitHub - cyb3rxp/awesome-soc: A collection of sources of documentation, as well as field best practices, to build/run a SOC
ishideo 2023/04/12
awesome

soc

cybersecurity

incident-response

github
ãƒªãƒ³ã‚¯
J-CLICS æ”»æ’ƒçµŒè·¯å¯¾ç–ç·¨ï¼ˆICSã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£è‡ªå·±è©•ä¾¡ãƒ„ãƒ¼ãƒ«ï¼‰
J-CLICS æ”»æ’ƒçµŒè·¯å¯¾ç–ç·¨ã§ã¯ã€æ”»æ’ƒè€…ãŒä¾µå…¥ã™ã‚‹éš›ã«ä½¿ç”¨ã•ã‚Œã‚‹æã‚ŒãŒã‚ã‚‹åˆ¶å¾¡ã‚·ã‚¹ãƒ†ãƒ ï¼ˆä»¥ä¸‹ã€ã€ŒICSã€ã¨ã„ã†ã€‚ï¼‰ã¨ã®æŽ¥ç¶šç‚¹ã‚’æ”»æ’ƒçµŒè·¯ã¨å®šç¾©ã—ã€æƒ³å®šã•ã‚Œã‚‹4ã¤ã®æ”»æ’ƒçµŒè·¯ã‚’è¨å®šã—ã¦ã„ã¾ã™ã€‚è¨å®šã—ãŸæ”»æ’ƒçµŒè·¯ã”ã¨ã«ä¾µå®³æ‰‹é †ã¨å®Ÿæ–½ã™ã¹ãã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–ã‚’æ¤œè¨Žã—ã¦ãŠã‚Šã€ãã®å¯¾ç–ã®å®Ÿæ–½çŠ¶æ³ã‚’ç¢ºèªã™ã‚‹ã€Œãƒã‚§ãƒƒã‚¯ãƒªã‚¹ãƒˆã€ãŠã‚ˆã³ãã®ã€Œè¨å•é …ç›®ã‚¬ã‚¤ãƒ‰ã€ã§æ§‹æˆã•ã‚Œã¦ã„ã¾ã™ã€‚ã•ã‚‰ã«ã€æ”»æ’ƒçµŒè·¯ã”ã¨ã«æ”»æ’ƒãŒæˆç«‹ã™ã‚‹æ¡ä»¶ã‚’æ•´ç†ã—ãŸã€Œå¯¾ç–ãƒžãƒƒãƒ—ã€ã‚’åŠ ãˆã€è©•ä¾¡ã™ã‚‹éš›ã®å‚è€ƒå›³æ›¸ã¨ã—ã¦ã„ã¾ã™ã€‚ J-CLICSã®åç§°ã‚’ã‚‚ã¤ICSã®è‡ªå·±è©•ä¾¡ãƒ„ãƒ¼ãƒ«ã«ã¯ã€ã€ŒJ-CLICS STEP1ï¼STEP2ã€ã¨ã€ŒJ-CLICS æ”»æ’ƒçµŒè·¯å¯¾ç–ç·¨ã€ã®2ç¨®ãŒã‚ã‚Šã¾ã™ã€‚J-CLICS STEP1ï¼STEP2ã¯ã€ã“ã‚Œã‹ã‚‰ICSã®ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–ã«å–ã‚Šçµ„ã‚€æ–¹å‘ã‘ã§ã€ãƒ™ãƒ¼ã‚¹ãƒ©ã‚¤ãƒ³ã‚¢ãƒ—ãƒãƒ¼ãƒã¨ã—ã¦ç¾åœ¨ã®ICSã«ãŠã‘ã‚‹ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾ç–çŠ¶æ³ã‚’å¯è¦–åŒ–ã—ã€é‡è¦åº¦ãŒé«˜ã
ishideo 2023/03/08
ics

checklist

j-clics

cybersecurity

incident-response

csirt
ãƒªãƒ³ã‚¯
æ´»å‹•æˆæžœï½œISOG-Jï¼šã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾å¿œçµ„ç¹”ã®æ•™ç§‘æ›¸ ç¬¬3.1ç‰ˆ
ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾å¿œçµ„ç¹”ã®æ•™ç§‘æ›¸ ç¬¬3.1ç‰ˆ (2023å¹´10æœˆ) 2023å¹´10æœˆ18æ—¥ã«ç¬¬3.1ç‰ˆã®PDFã®ãƒ†ã‚ã‚¹ãƒˆã‚„ç”»åƒã®ã‚³ãƒ”ãƒ¼ã‚’ã§ãã‚‹ã‚ˆã†ã«ä¿®æ£ã—ã¦å†é…å¸ƒã—ã¾ã—ãŸã€‚ãŠæ‰‹æ•°ã§ã™ãŒå¿…è¦ãªæ–¹ã¯å†ãƒ€ã‚¦ãƒ³ãƒãƒ¼ãƒ‰ã‚’ãŠé¡˜ã„ã—ã¾ã™ã€‚ 2023å¹´10æœˆã«ã€ã€Œã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾å¿œçµ„ç¹”ã®æ•™ç§‘æ›¸ ç¬¬3.1ç‰ˆã€ã‚’å…¬é–‹ã—ã¾ã—ãŸã€‚ä»˜éŒ²ã¨ãªã‚‹ã€Œã‚µãƒ¼ãƒ“ã‚¹ãƒãƒ¼ãƒˆãƒ•ã‚©ãƒªã‚ªã‚·ãƒ¼ãƒˆã€ã‚‚å…¬é–‹ã—ã¾ã—ãŸã€‚ãœã²ã”æ´»ç”¨ãã ã•ã„ã€‚ ã€WG6ã€‘ ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚ªãƒšãƒ¬ãƒ¼ã‚·ãƒ§ãƒ³é€£æºWGã«ãŠã„ã¦ã€ã€Œã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£å¯¾å¿œçµ„ç¹”ã®æ•™ç§‘æ›¸ ç¬¬2.1ç‰ˆã€ã®æ”¹ç‰ˆã«å‘ã‘ã¦è°è«–ã‚’ç¶šã‘ã¦ãã¾ã—ãŸã€‚2021å¹´10æœˆã«å…¬é–‹ã•ã‚ŒãŸITU-Tå‹§å‘ŠX.1060ã€X.1060ã®æ—¥æœ¬èªžç‰ˆã®æ¨™æº–ã¨ãªã‚‹TTCæ¨™æº–JT-X1060ã«åˆã‚ã›ãŸå½¢ã§ã®å…¨é¢çš„ãªæ”¹ç‰ˆã¨ãªã‚Šã¾ã™ã€‚ ç¬¬3.1ç‰ˆ åŸ·ç†é–¢ä¿‚è€…(ç¤¾åäº”åéŸ³é †) é‡Žå°» æ³°å¼˜ NECã‚½ãƒªãƒ¥ãƒ¼ã‚·ãƒ§ãƒ³ã‚¤ãƒŽãƒ™ãƒ¼ã‚¿æ ªå¼ä¼šç¤¾ æ—©å· æ•¦å² NECã‚½ãƒªãƒ¥ãƒ¼ã‚·ãƒ§ãƒ³
ishideo 2023/02/13
isog-j

cybersecurity

incident-response

csirt

pdf
ãƒªãƒ³ã‚¯
CSIRT â¼ˆæã®è‚²æˆ | â¼€èˆ¬ç¤¾å›£æ³•â¼ˆ â½‡æœ¬ã‚³ãƒ³ãƒ”ãƒ¥ãƒ¼ã‚¿ã‚»ã‚ãƒ¥ãƒªãƒ†ã‚£ã‚¤ãƒ³ã‚·ãƒ‡ãƒ³ãƒˆå¯¾å¿œãƒãƒ¼ãƒ å”è°ä¼š
ishideo 2022/12/17
csirt

nca

incident-response

cybersecurity

pdf
ãƒªãƒ³ã‚¯
1 2 3 æ¬¡ã®ãƒšãƒ¼ã‚¸