Security Playbooks

Practitioner-written guides for the threats Small-Medium Businesses actually face. The guides contain detection queries, response checklists, and policy templates and much more. No enterprise budget required.

Please browse the library of playbooks below.

---

Shadow AI Exposed

Your employees are already using AI tools you haven’t approved, and most of them are handling data you’d never knowingly hand to a third party. This playbook helps you find what’s running, assess the risk, build a governance policy that doesn’t get ignored, and set up monitoring to stay ahead of it.

Ready for Ransomware

Ransomware isn’t a matter of if, but when. This playbook covers whats needed in place before an attack lands:backup validation, network segmentation, detection queries, containment procedures, and business continuity steps.

Written for IT leads and security managers who need a plan that works under pressure, not a framework that falls apart when the phones start ringing.

Identity Under Fire

Credentials are the most targeted asset in any environment. This playbook covers the full lifecycle of an identity-based attack: suspicious sign-ins, MFA bypass, containment, account recovery, and post-incident hardening. Includes detection queries, response checklists, and guidance on communicating the incident without creating more chaos than the attack itself.