I came across this neat cheat sheet at SANS site. It provides a neat need-to-do list of what steps need to be taken if you are hacked. It has two cheat sheets seperatly prepared for

1. Security Incident Survey Cheat Sheet for Server Administrators

which captures tips for examining a suspect server to decide whether to escalate for formal incident response. Its steps attempt to minimize the adverse effect that the initial survey will have on the system, to decrease the likelihood that the attacker’s footprints will be inadvertently erased and

2. Initial Security Incident Questionnaire for Responders

which lists the questions the incident handler should consider asking when taking control of a qualified incident. It’s too easy to forget an important question when trying to think on your feet.

Also it has a DDoS incident cheat sheet which contains tips from how to prepare for a DDoS attack to after incident handling.

Nice piece of stuff!!!

Similar Posts you might be interested in:

None Found