1/ Linux #Hardening and #ThreatHunting The screenshot below is from Microsoft [1] - using XorDdos as an example, we can learn a lot about Linux forensics and hardening. 🧵 #CyberSecurity

2/ XorDdos bruteforces (root) access via SSH. Learning: Prevent logging in via SSH with passwords (use priv/pub keys instead). Within the SSH config (/etc/ssh/sshd_config), modify at least the following two lines: PermitRootLogin no PasswordAuthentication no