An overview of a good InfoSec Strategy

A friend of mine recently challenged my post SIEM 102 — Detect WordPress bruteforce where he proposed a tool that can effectively bruteforce WordPress from a lot of different IPs:

Pushing back on the detection mechanism mentioned in your blog, are you aware that a tool like Fireprox allows an attacker to leverage AWS by sending every request from a different IP address?

- Guillaume Caillé (@OffenseTeacher) January 20, 2021

Some background