Facebook
Instagram
Linkedin
Home
Active Directory Attack
Network Attack
SIEM
TOOLS
IOC
Mitre Att&ck
E-Mail Attack
Editors Pick
Search
Security Investigation
Be the first to investigate
Home
Active Directory Attack
Threat Hunting Using Windows Security Log
CVE-2023-21554 – Hunt For MSMQ QueueJumper In The Environment
OS Credential Dumping- LSASS Memory vs Windows Logs
Credential Dumping using Windows Network Providers – How to Respond
The Flow of Event Telemetry Blocking – Detection & Response
Network Attack
How Does DGA Malware Operate And How To Detect In A…
DNS sinkholes to Prevent Malware? How did it work?
Threat Hunting using DNS logs – Soc Incident Response Procedure
What is Port Forwarding and the Security Risks?
Threat Hunting using Firewall Logs – Soc Incident Response Procedure
SIEM
How to Detect Malware C2 with DNS Status Codes
Ngrok Threat Hunting: Detect Hackers at the End of the Tunnel
The Most Important Data Exfiltration Techniques for a Soc Analyst to…
Soc Interview Questions and Answers – CYBER SECURITY ANALYST
Anatomy Of An Advanced Persistent Threat Group
TOOLS
DeepBlueCLI – PowerShell Module for Threat Hunting
Pestudio: Initial Malware Assessment Made Simple
How Attackers Manipulate LLMs in ML – Attack Vectors
How to Remove Database Malware from Your Website
PECmd – Windows Prefetch Analysis For Incident Responders
IOC
Phishing Scam Alert: Fraudulent Emails Requesting to Clear Email Storage Space…
Vidar Infostealer Malware Returns with new TTPS – Detection & Response
New WhiskerSpy Backdoor via Watering Hole Attack -Detection & Response
RedLine Stealer returns with New TTPS – Detection & Response
Understanding Microsoft Defender Threat Intelligence (Defender TI)
Mitre Att&ck
Threat Hunting Playbooks For MITRE TACTICS
Masquerade Attack Part 2 – Suspicious Services and File Names
Masquerade Attack – Everything You Need To Know in 2022
MITRE D3FEND Knowledge Guides to Design Better Cyber Defenses
Mapping MITRE ATT&CK with Window Event Log IDs
E-Mail Attack
How DKIM SPF & DMARC Work to Prevent Email Spoofing and…
How Email Encryption Protects Your Privacy
How To Check Malicious Phishing Links
Emotet Malware with Microsoft OneNote- How to Block emails based on…
How DMARC is used to reduce spoofed emails ?
Editors Pick
Home
Active Directory Attack
Page 3
Active Directory Attack
Active Directory Attack
Event ID 4663 -Occurrence , Log fields Explanation & Use cases
Anusthika Jeyashankar
-
November 2, 2021
0
Active Directory Attack
Windows Management Instrumentation Attacks – Detection & Response
Anusthika Jeyashankar
-
November 1, 2021
0
Active Directory Attack
Process Injection Techniques used by Malware – Detection & Analysis
Anusthika Jeyashankar
-
October 27, 2021
0
Active Directory Attack
Directory Services Restore Mode Password Reset – Event IDs to Monitor
Anusthika Jeyashankar
-
October 25, 2021
0
Active Directory Attack
Persistence Remote Password Reset – Event IDs to Monitor
BalaGanesh
-
October 21, 2021
0
Active Directory Attack
Lateral Movement Detection with Windows Event Logs
BalaGanesh
-
October 20, 2021
0
Active Directory Attack
Advanced Hunting to Find the Ransomware
Harisuthan
-
October 19, 2021
0
Active Directory Attack
Threat Hunting with EventID 5145 – Object Access – Detailed File Share
Anusthika Jeyashankar
-
October 18, 2021
0
Active Directory Attack
Detecting and Preventing a Golden Ticket Attack
BalaGanesh
-
October 15, 2021
0
Active Directory Attack
Detections of Malware Execution from Unusual Directories
Sindhuja
-
October 13, 2021
0
1
2
3
4
5
Page 3 of 5
