Tales of a Threat Hunter 3
AwesomeKB - Your Free, 24x7, Private, Cloud-Based, 2FA-Protected KB!
Posted on November 10, 2018
Tags:
threat hunting, hunting, knowledge base, authelia, docker, kb, cybersecurity
Tales of a Threat Hunter 2
Following the trace of WMI Backdoors & other nastiness
Posted on March 2, 2018
Tags:
threat hunting, hunting, wmi, windows management instrumentation, backdoor, persistene, siem, ioc, splunk, elk, darkquasar, volatility
SOC Operational Concepts
Event, Incident & IOC - Operational Concepts to have with your morning coffee
Posted on October 15, 2017
Tags:
incident, threat, event, alarm, ioc, attack, darkquassar, incident management, soc, siem, security, monitoring, operations
Tales of a Threat Hunter 1
Detecting Mimikatz & other Suspicious LSASS Access - Part 1
Posted on September 9, 2017
Tags:
threat hunting, hunting, mimikatz, siem, ioc, credential dump, splunk, elk, darkquasar, volatility