Lenny Zeltser not only created some great security cheatsheets, he compiled a list of some good reference guides developed by others.
Why should you trust his FREE cheatsheets? Lenny leads a security consulting practice, teaches malware analysis, explores security topics at conferences and in articles, and volunteers as an incident handler at the Internet Storm Center.
So whether you want to learn more about specific security practices or just have a quick reference, you’ll want these cheatsheets.
Get these cheatsheets here:
- Critical Log Review Checklist for Security Incidents
- Analyzing Malicious Documents Cheat Sheet
- Security Architecture Cheat Sheet for Internet Applications
- Troubleshooting Human Communications
- Security Incident Survey Cheat Sheet for Server Administrators
- Initial Security Incident Questionnaire for Responders
- Network DDoS Incident Response Cheat Sheet
- Reverse-Engineering Malware Cheat Sheet
- Information Security Assessment RFP Cheat Sheet
- How to Suck at Information Security
- Security-Related Cheat Sheets by Other Authors (here’s a few, there’s more)
* Network Cheat Sheets by Jeremy Stretch
* SQL Injection Prevention Cheat Sheet by OWASP
* TCP/IP and Tcpdump Packet Reference by SANS Institute
* Google Hacking and Defense Cheat Sheet by SANS Institute
* Windows Command Line Cheat Sheet by Ed Skoudis
* Netcat Cheat Sheet by Ed Skoudis
* A Directory of IT Cheat Sheets
* A Directory of Cheat Sheets for Developers
Again, here’s Lenny’s cheatsheet page.
Also checkout Lenny’s research page which links to many articles he’s written on security and the history of technology.
Updated 1-2-16: Check out Security Monkey’s list of Security Monkey’s security cheatsheets.
Other ITauditSecurity posts that mention Lenny:
Why People Don’t “Do” Security
ITauditSecurity 