Home
Active Directory Attack
Network Attack
SIEM
TOOLS
IOC
Mitre Att&ck
E-Mail Attack
Search
Monday, January 24, 2022, 2:37 am
Live IOC
Latest Cyber Security News
New CVE’s
Ransomware CVE ID
AbuseIPDB
Phishing Domain Search
Sucuri Web Malware
Urlabuse
WebPage Historic Checks
Sign in
Welcome! Log into your account
your username
your password
Forgot your password? Get help
Password recovery
Recover your password
your email
A password will be e-mailed to you.
Security Investigation
Home
Active Directory Attack
Remote Desktop Protocol Remote Code Execution Vulnerability – CVE-2022-21893
Account Manipulation and Access Token Theft Attacks
Best Practices For Remote Access Security
Best Practices For Active Directory Security
Detecting Office365 Azure AD Environment Backdoors
Network Attack
Detect Most Common Malicious Actions in the Linux Environment
How DNS Tunneling works – Detection & Response
Best Security Practices for Mitigating Secure Shell Attacks
Top Cloud Security Challenges and Risks
How to Secure S3 Bucket Misconfigurations in Amazon Cloud
SIEM
Soc Interview Questions and Answers – CYBER SECURITY ANALYST
Web Browser-Based Attacks: How to Protect the End Users
Apache Log4j Vulnerability – Detection and Mitigation
Google Cloud Scale Threat Detection using Chronicle
Types of SPLUNK Deployments and Configuration
TOOLS
Osquery for Cyber Threat Detection & Incident Response
Dynamic Malware Analysis – Procmon to Extract Indicators of Compromise
Zeek – Network Traffic Analysis and Security Monitoring Tool
Timeline Explorer – Tool For Incident Responders and Malware Analyst
MISP – Open Source Threat Intelligence and Sharing Platform
IOC
Whispergate Malware – Destructive Malware Targeting Ukrainian Organizations
Latest IOCs – Threat Actor URLs , IP’s & Malware Hashes
Latest Ransomware CVEs – Vulnerabilities Abused by Ransomware Actors
Kaseya VSA Ransomware IOC
Threat Intelligence – Dridex Malware Latest IOCs
Mitre Att&ck
Advance Mitre Threat Mapping – Attack Navigator & TRAM Tools
What is the MITRE ATT&CK Framework? How Is It Useful
What is Crown Jewels Analysis ? Part:01
Red canary AtomicTest Harnesses – Tool for Mitre attack Execution
Deep Drive into Darkside Ransomware
E-Mail Attack
Proxyshell Vulnerability – Large Exploitation of Microsoft Exchange Servers
Email Header Analysis – Use Cases Including SPF, DKIM & DMARC
How DKIM SPF & DMARC Work to Prevent Email Spoofing and…
Cooking Malicious Phishing Email Headers with CyberChef
DnsTwist Tool – Proactive Approach for Handling Phishing Cases
Home
Tags
Event id 4648
Tag: event id 4648
Most Common Windows Event IDs to Hunt – Mind Map
BalaGanesh
-
November 3, 2021
0
Windows Management Instrumentation Attacks – Detection & Response
Anusthika Jeyashankar
-
November 1, 2021
0
Threat Hunting Using Windows EventID 4648 – Logon/Logoff
BalaGanesh
-
September 28, 2021
0
Threat Hunting Using Windows Security Log
Anusthika Jeyashankar
-
September 27, 2021
0
Recent Posts
Remote Desktop Protocol Remote Code Execution Vulnerability – CVE-2022-21893
January 20, 2022
Whispergate Malware – Destructive Malware Targeting Ukrainian Organizations
January 19, 2022
Detect Most Common Malicious Actions in the Linux Environment
January 17, 2022
How DNS Tunneling works – Detection & Response
January 11, 2022
Latest Cyber Security News – Hacker News !
January 7, 2022
Load more
