From 8c056cb3457e46049264dddda6d09ab63e9543c3 Mon Sep 17 00:00:00 2001 From: Anton Nesterov Date: Sat, 31 Aug 2024 01:50:46 +0200 Subject: [PATCH] vault backup: 2024-08-31 01:50:46 --- .obsidian/workspace.json | 34 +++++---- 01 - Planning.md | 3 + templates/INCIDENT HANDLER'S JOURNAL.md | 94 +++++++++++++++++++++++++ templates/PASTA.md | 2 - 4 files changed, 118 insertions(+), 15 deletions(-) create mode 100644 templates/INCIDENT HANDLER'S JOURNAL.md diff --git a/.obsidian/workspace.json b/.obsidian/workspace.json index 6fcb481..046a200 100644 --- a/.obsidian/workspace.json +++ b/.obsidian/workspace.json @@ -4,15 +4,19 @@ "type": "split", "children": [ { - "id": "b60c03005b6482a8", + "id": "86073634de811326", "type": "tabs", "children": [ { - "id": "21b5784e2023f491", + "id": "6d7f4eba18bcabe9", "type": "leaf", "state": { - "type": "graph", - "state": {} + "type": "markdown", + "state": { + "file": "templates/legal/Non-Disclosure Agreement.md", + "mode": "source", + "source": false + } } } ] @@ -82,6 +86,7 @@ "state": { "type": "backlink", "state": { + "file": "templates/legal/Non-Disclosure Agreement.md", "collapseAll": false, "extraContext": false, "sortOrder": "alphabetical", @@ -98,6 +103,7 @@ "state": { "type": "outgoing-link", "state": { + "file": "templates/legal/Non-Disclosure Agreement.md", "linksCollapsed": false, "unlinkedCollapsed": true } @@ -119,7 +125,9 @@ "type": "leaf", "state": { "type": "outline", - "state": {} + "state": { + "file": "templates/legal/Non-Disclosure Agreement.md" + } } } ] @@ -139,12 +147,17 @@ "command-palette:Open command palette": false } }, - "active": "21b5784e2023f491", + "active": "6d7f4eba18bcabe9", "lastOpenFiles": [ + "templates/legal/Request for Information (RFI).md", + "templates/legal/Statement of Work.md", + "templates/PASTA.md", + "02 - Scoping.md", + "01 - Planning.md", + "templates/INCIDENT HANDLER'S JOURNAL.md", + "tools/0.Bookmark/One-Liners.md", "README.md", "tools/1.Information-Gathering/Global-Steps.md", - "01 - Planning.md", - "02 - Scoping.md", "Red Team/1 - Information Gathering/2 - Active Reconnaissance/• AMASS.md", "Red Team/1 - Information Gathering/2 - Active Reconnaissance", "Red Team/1 - Information Gathering", @@ -165,11 +178,6 @@ "tools/1.Information-Gathering/2.Active-Reconnaissance/Traceroute.md", "tools/1.Information-Gathering/2.Active-Reconnaissance/Telnet.md", "tools/1.Information-Gathering/2.Active-Reconnaissance/Sn1per.md", - "tools/1.Information-Gathering/2.Active-Reconnaissance/Netcat.md", - "tools/1.Information-Gathering/2.Active-Reconnaissance/DNSenum.md", - "tools/1.Information-Gathering/2.Active-Reconnaissance/Curl.md", - "tools/1.Information-Gathering/2.Active-Reconnaissance/AMASS.md", - "tools/1.Information-Gathering/1.Passive-Reconnaissance/Whois.md", "tools/5.Machine/3.Active-Directory/General/Exploitation/AV-Detection-and-Evasion/Evasion-Techniques/Tools", "tools/5.Machine/1.Linux/General/Exploitation/AV-Detection-Evasion/Evasion-Techniques/Tools", "tools/5.Machine/3.Active-Directory/General/Exploitation/AV-Detection-and-Evasion/Evasion-Techniques", diff --git a/01 - Planning.md b/01 - Planning.md index edfc6d7..6d6c253 100644 --- a/01 - Planning.md +++ b/01 - Planning.md @@ -12,6 +12,7 @@ Asses reasons for the assessment. Security, risk assessments, customer personal Identify Protected Assets [[ASSET INVENTORY]] + [[RISK REGISTER]] ## Compliance @@ -21,7 +22,9 @@ Example: PCI DSS, GDPR, HIPPA, etc - Strictly defined surface area of engagement [[Statement of Work]] + [[Non-Disclosure Agreement]] + [[Request for Information (RFI)]] ## Resources diff --git a/templates/INCIDENT HANDLER'S JOURNAL.md b/templates/INCIDENT HANDLER'S JOURNAL.md new file mode 100644 index 0000000..8ce2960 --- /dev/null +++ b/templates/INCIDENT HANDLER'S JOURNAL.md @@ -0,0 +1,94 @@ + + +| | | | | +|---|---|---|---| +|Date: 

Record the date of the journal entry.|Entry:

Record the journal entry number.| | | +|Description|Provide a brief description about the journal entry.| | | +|Tool(s) used|List any cybersecurity tools that were used.| | | +|The 5 W's|Capture the 5 W's of an incident.

- Who caused the incident?

- What happened?

- When did the incident occur?

- Where did the incident happen?

- Why did the incident happen?| | | +|Additional notes|Include any additional thoughts, questions, or findings.| | | + + + +--- + + + +| | | | | +|---|---|---|---| +|Date: 

Record the date of the journal entry.|Entry:

Record the journal entry number.| | | +|Description|Provide a brief description about the journal entry.| | | +|Tool(s) used|List any cybersecurity tools that were used.| | | +|The 5 W's|Capture the 5 W's of an incident.

- Who caused the incident?

- What happened?

- When did the incident occur?

- Where did the incident happen?

- Why did the incident happen?| | | +|Additional notes|Include any additional thoughts, questions, or findings.| | | + + + +--- + + + +| | | | | +|---|---|---|---| +|Date: 

Record the date of the journal entry.|Entry:

Record the journal entry number.| | | +|Description|Provide a brief description about the journal entry.| | | +|Tool(s) used|List any cybersecurity tools that were used.| | | +|The 5 W's|Capture the 5 W's of an incident.

- Who caused the incident?

- What happened?

- When did the incident occur?

- Where did the incident happen?

- Why did the incident happen?| | | +|Additional notes|Include any additional thoughts, questions, or findings.| | | + + + +--- + + + +| | | | | +|---|---|---|---| +|Date: 

Record the date of the journal entry.|Entry:

Record the journal entry number.| | | +|Description|Provide a brief description about the journal entry.| | | +|Tool(s) used|List any cybersecurity tools that were used.| | | +|The 5 W's|Capture the 5 W's of an incident.

- Who caused the incident?

- What happened?

- When did the incident occur?

- Where did the incident happen?

- Why did the incident happen?| | | +|Additional notes|Include any additional thoughts, questions, or findings.| | | + + + + +--- + + + +| | | | | +|---|---|---|---| +|Date: 

Record the date of the journal entry.|Entry:

Record the journal entry number.| | | +|Description|Provide a brief description about the journal entry.| | | +|Tool(s) used|List any cybersecurity tools that were used.| | | +|The 5 W's|Capture the 5 W's of an incident.

- Who caused the incident?

- What happened?

- When did the incident occur?

- Where did the incident happen?

- Why did the incident happen?| | | +|Additional notes|Include any additional thoughts, questions, or findings.| | | + + + +--- + + + +| | | | | +|---|---|---|---| +|Date: 

Record the date of the journal entry.|Entry:

Record the journal entry number.| | | +|Description|Provide a brief description about the journal entry.| | | +|Tool(s) used|List any cybersecurity tools that were used.| | | +|The 5 W's|Capture the 5 W's of an incident.

- Who caused the incident?

- What happened?

- When did the incident occur?

- Where did the incident happen?

- Why did the incident happen?| | | +|Additional notes|Include any additional thoughts, questions, or findings.| | | + + + +### Need another journal entry template? + +If you want to add more journal entries, please copy one of the tables above and paste it into the template to use for future entries. + +--- + + + +| | +|---| +|Reflections/Notes: Record additional notes.| \ No newline at end of file diff --git a/templates/PASTA.md b/templates/PASTA.md index 93ae899..f6f0464 100644 --- a/templates/PASTA.md +++ b/templates/PASTA.md @@ -2,8 +2,6 @@ --- - - | | | | ------------------------------------------ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | | **Stages** | **Sneaker company** |