misp-galaxy icon indicating copy to clipboard operation
misp-galaxy copied to clipboard

Published 20 hours ago verified publisher icon MISP

Preventive measure galaxy

Open iglocska opened this issue 3 years ago • 2 comments

Add the following:

  • Block host level
  • Block network level
  • Alert on host level
  • Alert on network level

iglocska avatar Nov 02 '20 14:11 iglocska

There is the preventive measures based on the ransomware document overview as published in https://docs.google.com/spreadsheets/d/1TWS238xacAto-fLKh1n5uTsdijWdCEsGIM0Y0Hvmc5g/pubhtml# . The preventive measures are quite generic and can fit any standard Windows infrastructure and their security measures.

Considering it is quite windows oriented I guess it doesn't cover the idea you had?

cvandeplas avatar Mar 29 '24 07:03 cvandeplas

I think it was to expand the current preventive measures to have more granularity on the network filtering if it's just detection or actual remediation.

adulau avatar Mar 29 '24 08:03 adulau