Facebook
Instagram
Linkedin
Home
Active Directory Attack
Network Attack
SIEM
TOOLS
IOC
Mitre Att&ck
E-Mail Attack
Search
Security Investigation
Be the first to investigate
Home
Active Directory Attack
CVE-2023-21554 – Hunt For MSMQ QueueJumper In The Environment
OS Credential Dumping- LSASS Memory vs Windows Logs
Credential Dumping using Windows Network Providers – How to Respond
The Flow of Event Telemetry Blocking – Detection & Response
UEFI Persistence via WPBBIN – Detection & Response
Network Attack
Recovering SAP Data Breaches Caused by Ransomware
How Does DGA Malware Operate And How To Detect In A…
What is Port Forwarding and the Security Risks?
CVE-2021-4034 – Polkit Vulnerability Exploit Detection
DNSSEC – Domain Name System Security Extensions Explained
SIEM
Remote Desktop Gateway – What Is It
How to Detect Malware C2 with DNS Status Codes
How to Bypass DLP Policies & General Defense Strategies
The Most Important Data Exfiltration Techniques for a Soc Analyst to…
Top Most Asked Splunk Interview Questions and Answers 2023
TOOLS
Push Notification Protocols: Ensuring Safety In Digital Communication
7 Essentials To Protect Your Digital Workspace
ProcDOT- A Revolutionary Visual Malware Analysis Tool
The Interactive Disassembler – IDA Pro
Pestudio: Initial Malware Assessment Made Simple
IOC
Phishing Scam Alert: Fraudulent Emails Requesting to Clear Email Storage Space…
Vidar Infostealer Malware Returns with new TTPS – Detection & Response
New WhiskerSpy Backdoor via Watering Hole Attack -Detection & Response
RedLine Stealer returns with New TTPS – Detection & Response
Understanding Microsoft Defender Threat Intelligence (Defender TI)
Mitre Att&ck
Threat Hunting Playbooks For MITRE TACTICS
Masquerade Attack Part 2 – Suspicious Services and File Names
Masquerade Attack – Everything You Need To Know in 2022
MITRE D3FEND Knowledge Guides to Design Better Cyber Defenses
Mapping MITRE ATT&CK with Window Event Log IDs
E-Mail Attack
How To Check Malicious Phishing Links
Emotet Malware with Microsoft OneNote- How to Block emails based on…
How DMARC is used to reduce spoofed emails ?
Hackers Use New Static Expressway Phishing Technique on Lucidchart
Weird Trick to Block Password-Protected Files to Combat Ransomware
Home
Authors
Posts by BalaGanesh
BalaGanesh
181 POSTS
0 COMMENTS
https://www.socinvestigation.com
Balaganesh is a Incident Responder. Certified Ethical Hacker, Penetration Tester, Security blogger, Founder & Author of Soc Investigation.
IOC
Ukraine CERT-UA Reports a phishing campaign conducted by Armageddon APT
BalaGanesh
-
May 16, 2022
0
IOC
APT34 Returns with New TTPs And Delivers Malicious Files
BalaGanesh
-
May 13, 2022
0
Active Directory Attack
Sysmon Event ID 13 to Detect Malicious Password-Protected File unlock and Registry Changes
BalaGanesh
-
May 12, 2022
0
IOC
Hackers are Hiding Malware in Windows Event Logs Category 0x4142
BalaGanesh
-
May 11, 2022
0
Active Directory Attack
Windows Event ID 5379 to Detect Malicious Password-Protected File unlock
BalaGanesh
-
May 10, 2022
0
Active Directory Attack
Time to re-evaluate your 2FA setup on Microsoft networks
BalaGanesh
-
May 5, 2022
0
E-Mail Attack
Google SMTP Relay Abused to Deliver Phishing Emails
BalaGanesh
-
May 4, 2022
0
SIEM
Ransomware: How Attackers are Breaching Corporate Networks
BalaGanesh
-
April 29, 2022
0
IOC
Emotet Returns With New TTPs And Delivers .lnk files
BalaGanesh
-
April 28, 2022
0
IOC
Hackers Exploit Critical VMware Vulnerability to Deliver Backdoors
BalaGanesh
-
April 27, 2022
0
1
...
7
8
9
...
19
Page 8 of 19