Home
Active Directory Attack
Network Attack
SIEM
TOOLS
IOC
Mitre Att&ck
E-Mail Attack
Search
Security Investigation
Be the first to investigate
Home
Active Directory Attack
OS Credential Dumping- LSASS Memory vs Windows Logs
Credential Dumping using Windows Network Providers – How to Respond
The Flow of Event Telemetry Blocking – Detection & Response
UEFI Persistence via WPBBIN – Detection & Response
Microsoft Notified Blueteam to Monitor Sqlps.exe and Powershell
Network Attack
What is Port Forwarding and the Security Risks?
CVE-2021-4034 – Polkit Vulnerability Exploit Detection
DNSSEC – Domain Name System Security Extensions Explained
Detect Most Common Malicious Actions in the Linux Environment
How DNS Tunneling works – Detection & Response
SIEM
What is Surface web, Deep web and Dark web
OVERVIEW OF MODERN AND FUTURE SOC
Anatomy Of The Ransomware Cybercrime Economy
Anatomy Of An Advanced Persistent Threat Group
Out-of-Band Application Security Testing – Detection and Response
TOOLS
How to Detect Malware Hijacking Digital signatures
Densityscout – Entropy Analyzer for Threat Hunting and Incident Response
Malicious JQuery & JavaScript – Threat Detection & Incident Response
Free Ransomware Decryption tool -No More Ransom
How to Remove Database Malware from Your Website
IOC
Vidar Infostealer Malware Returns with new TTPS – Detection & Response
New WhiskerSpy Backdoor via Watering Hole Attack -Detection & Response
RedLine Stealer returns with New TTPS – Detection & Response
Understanding Microsoft Defender Threat Intelligence (Defender TI)
WEBBFUSCATOR Campaign New TTPS – Detection & Response
Mitre Att&ck
Masquerade Attack Part 2 – Suspicious Services and File Names
Masquerade Attack – Everything You Need To Know in 2022
MITRE D3FEND Knowledge Guides to Design Better Cyber Defenses
Mapping MITRE ATT&CK with Window Event Log IDs
Advance Mitre Threat Mapping – Attack Navigator & TRAM Tools
E-Mail Attack
How DMARC is used to reduce spoofed emails ?
Hackers Use New Static Expressway Phishing Technique on Lucidchart
Weird Trick to Block Password-Protected Files to Combat Ransomware
Phishing with Reverse Tunnels and URL Shorteners – Detection & Response
How to spot a phishing email?
Home
Authors
Posts by Vignesh Bhaaskaran
Vignesh Bhaaskaran
8 POSTS
COMMENTS
http://www.socinvestigation.com
IOC
Qbot TTP Compilation – External Old Emails Hijacking to New Malicious LNK Files
Vignesh Bhaaskaran
-
July 30, 2022
0
IOC
New SVCReady malware loads from Word doc properties – Detection & Response
Vignesh Bhaaskaran
-
June 10, 2022
0
IOC
CVE-2022-30190 Detection Extended For Directory Traversal
Vignesh Bhaaskaran
-
June 2, 2022
0
SIEM
Ngrok Threat Hunting: Detect Hackers at the End of the Tunnel
Vignesh Bhaaskaran
-
May 2, 2022
0
Network Attack
What is Port Forwarding and the Security Risks?
Vignesh Bhaaskaran
-
March 7, 2022
0
SIEM
Windows RDP Event IDs Cheatsheet
Vignesh Bhaaskaran
-
February 15, 2022
0
Network Attack
CVE-2021-4034 – Polkit Vulnerability Exploit Detection
Vignesh Bhaaskaran
-
February 8, 2022
0
Network Attack
DNSSEC – Domain Name System Security Extensions Explained
Vignesh Bhaaskaran
-
February 1, 2022
0
