DEV Community

# incidentresponse

The process of responding to and managing security incidents and breaches.

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Protecting GitHub from Supply-Chain Malware: Prevention, Cleanup, and Recovery
mike_anderson_d01f52129fb profile

Protecting GitHub from Supply-Chain Malware: Prevention, Cleanup, and Recovery

#githubmalware #security #supplychainattack #incidentresponse
Comments
12 min read
How to investigate suspicious SSH logins without giving AI a shell
sec123 profile

How to investigate suspicious SSH logins without giving AI a shell

#incidentresponse #linux #security #opensource
Comments
4 min read
How I would use local read-only AI for first-pass server incident response
sec123 profile

How I would use local read-only AI for first-pass server incident response

#incidentresponse #security #opensource #ai
Comments
2 min read
Turning first-pass host evidence into a DFIR handoff report
sec123 profile

Turning first-pass host evidence into a DFIR handoff report

#ai #security #opensource #incidentresponse
Comments
4 min read
Two Retailers, One Attack: What Really Decides Who Survives a Breach
stanleya profile

Two Retailers, One Attack: What Really Decides Who Survives a Breach

#incidentresponse #cybersecurity #websecurity #security
Comments
7 min read
How to triage Java memory-shell clues without unsafe default heap dumps
sec123 profile

How to triage Java memory-shell clues without unsafe default heap dumps

#security #java #incidentresponse #opensource
Comments
3 min read
How to triage a suspected WebShell without giving AI a shell
sec123 profile

How to triage a suspected WebShell without giving AI a shell

#incidentresponse #security #linux #opensource
Comments
3 min read
What safety boundary should an AI incident investigation tool have?
sec123 profile

What safety boundary should an AI incident investigation tool have?

#incidentresponse #security #ai #opensource
Comments
3 min read
How to investigate a suspicious IP on a Linux server with read-only evidence
sec123 profile

How to investigate a suspicious IP on a Linux server with read-only evidence

#incidentresponse #linux #security #opensource
Comments
3 min read
The four-minute gap: what the Nando's machete incident reveals about incident response systems (not just training)
xguardsecurity profile

The four-minute gap: what the Nando's machete incident reveals about incident response systems (not just training)

#security #incidentresponse #operations #workplacesafety
Comments
4 min read
How DevOps Engineers Can Use AI to Triage Production Incidents Faster
jjoyneriv profile

How DevOps Engineers Can Use AI to Triage Production Incidents Faster

#devops #incidentresponse #ai #sre
Comments 1
5 min read
My Server's Crisis Moment: An Alert During Family Dinner
merbayerp profile

My Server's Crisis Moment: An Alert During Family Dinner

#life #systemadmin #incidentresponse
Comments
4 min read
My Own VPS Crisis: That Moment of Panic During a Client Meeting
merbayerp profile

My Own VPS Crisis: That Moment of Panic During a Client Meeting

#career #vps #servermanagement #incidentresponse
Comments
6 min read
IRAS: Building a Production-Grade Autonomous Incident Response Agent
krishna_kittu_1d2837d30bb profile

IRAS: Building a Production-Grade Autonomous Incident Response Agent

#ai #devops #sre #incidentresponse
Comments
4 min read
The Config Rule Audit Your IR Playbook Is Missing
gabriel_pavel profile

The Config Rule Audit Your IR Playbook Is Missing

#cloudsecurity #aws #incidentresponse
2
Comments
3 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.