Wednesday, October 27, 2021, 9:32 am

Most Recent

Threat Hunting using Proxy Logs – Soc Incident Response Procedure

BalaGanesh - 0
Phishing, Data exfiltration and droppers!! Oh Bad! Business needs the right control in place to detect and block cyber-attacks. Web proxy is one of...

Directory Services Restore Mode Password Reset – Event IDs to Monitor

Anusthika Jeyashankar - 0
Attackers will usually strive to spend additional periods on the machine in order to achieve their goals. Persistence attack is a phase that comes...

What is the MITRE ATT&CK Framework? How Is It Useful

Harisuthan - 2
Introduction MITRE | ATTACK is an open-source framework that mainly focuses to understand or familiarize yourself with adversary tactics and techniques based on real-world observations,...

Persistence Remote Password Reset – Event IDs to Monitor

BalaGanesh - 0
Adversaries may manipulate accounts to maintain access to victim systems. Account manipulation may consist of any action that preserves adversary access to a compromised...

Lateral Movement Detection with Windows Event Logs

BalaGanesh - 0
Lateral movement refers to the behaviors of cyber attackers after gaining initial access to the assets and moves around the compromised network for sensitive...
Load more

Newsletter

Sign up for Daily Updates

Most Popular

Load more

EDITOR PICKS

POPULAR POSTS

POPULAR CATEGORY

© Soc Investigation 2020 - 2021. All Rights Reserved