This is the RENU-CERT's first and most important service it renders
to RENU. Incident handling involves receiving, triaging, and
responding to requests and reports, and analyzing incidents and
Particular response activities can include:
- taking action to protect systems and networks affected or threatened by intruder activity.
- providing solutions and mitigation strategies from relevant advisories or alerts.
- looking for intruder activity on other parts of the network
- filtering network traffic
- developing other response or workaround strategies.
For more details, read more about this service here
Reporting incidents shall be done using online or downloadable digital forms found here.
This service provides RENU with a comprehensive and
easy-to-find collection of useful information that aids in
Such information might include:
- reporting guidelines and contact information for the RENU-CERT.
- archives of alerts, warnings, and other announcements.
- documentation about current best practices.
- general computer security guidance
- vendor links.
- other information that can improve overall security practices.
This information is developed and published by the RENU-CERT, and can include information from external resources such as other CSIRTs, vendors, and security experts. This service includes maintaining a public or private archive or knowledge base of vulnerability, artifact or other incident information and corresponding response strategies.
For more details, read more about the service here
This involves the operation of central network-traffic monitoring and analysis for the purpose of intrusion detection, operation of intrusion-prevention systems at chosen points of the network, and records of security incidents handled will be kept. While the records will remain confidential, periodic statistical reports will be made available to the R&E community.