Home
Active Directory Attack
Network Attack
SIEM
TOOLS
IOC
Mitre Att&ck
E-Mail Attack
Search
Tuesday, November 30, 2021, 2:26 pm
Live IOC
Latest Cyber Security News
New CVE’s
Ransomware CVE ID
AbuseIPDB
Phishing Domain Search
Sucuri Web Malware
Urlabuse
WebPage Historic Checks
Sign in
Welcome! Log into your account
your username
your password
Forgot your password? Get help
Password recovery
Recover your password
your email
A password will be e-mailed to you.
Security Investigation
Home
Active Directory Attack
Detecting Office365 Azure AD Environment Backdoors
Detecting and Preventing a Silver Ticket Attack
Hunting for Suspicious Windows Services – Mind Map
Most Common Windows Event IDs to Hunt – Mind Map
Event ID 4663 -Occurrence , Log fields Explanation & Use cases
Network Attack
Top Cloud Security Challenges and Risks
How to Secure S3 Bucket Misconfigurations in Amazon Cloud
DNS sinkholes to Prevent Malware? How did it work?
Finding the Evil in TLS 1.2 Traffic – Detecting Malware on…
Threat Hunting using Firewall Logs – Soc Incident Response Procedure
SIEM
Soc Interview Questions and Answers – CYBER SECURITY ANALYST
Types of SPLUNK Deployments and Configuration
Splunk Features – Quick Guide on Key Elements
Free Automated Malware Analysis Sandboxes for Incident Response
Splunk Architecture: Forwarder, Indexer, And Search Head
TOOLS
PECmd – Windows Prefetch Analysis For Incident Responders
Autoruns v14.06 – Malware Autostart locations for Incident Responders
Sigcheck v2.82 – Quick Malware Auditing for Incident Responders
Malware Analysis Use Cases with ANY.RUN Sandbox
Densityscout – Entropy Analyzer for Threat Hunting and Incident Response
IOC
Latest IOCs – Threat Actor URLs , IP’s & Malware Hashes
Latest Ransomware CVEs – Vulnerabilities Abused by Ransomware Actors
Kaseya VSA Ransomware IOC
Threat Intelligence – Dridex Malware Latest IOCs
Threat Intelligence – Bazarcall Malware Latest IOCs
Mitre Att&ck
Advance Mitre Threat Mapping – Attack Navigator & TRAM Tools
What is the MITRE ATT&CK Framework? How Is It Useful
What is Crown Jewels Analysis ? Part:01
Red canary AtomicTest Harnesses – Tool for Mitre attack Execution
Deep Drive into Darkside Ransomware
E-Mail Attack
Proxyshell Vulnerability – Large Exploitation of Microsoft Exchange Servers
Email Header Analysis – Use Cases Including SPF, DKIM & DMARC
How DKIM SPF & DMARC Work to Prevent Email Spoofing and…
Cooking Malicious Phishing Email Headers with CyberChef
DnsTwist Tool – Proactive Approach for Handling Phishing Cases
Home
Tags
Windows event logs
Tag: windows event logs
Windows Management Instrumentation Attacks – Detection & Response
Anusthika Jeyashankar
-
November 1, 2021
0
Directory Services Restore Mode Password Reset – Event IDs to Monitor
Anusthika Jeyashankar
-
October 25, 2021
0
Lateral Movement Detection with Windows Event Logs
BalaGanesh
-
October 20, 2021
0
Logon Tracer – Investigate & Visualize Malicious Windows Logon
Harisuthan
-
October 6, 2021
0
Threat Hunting Using Windows EventID 4648 – Logon/Logoff
BalaGanesh
-
September 28, 2021
0
Top Windows Security Events Logs You Must Monitor
BalaGanesh
-
January 5, 2021
0
Recent Posts
Top Cloud Security Challenges and Risks
November 30, 2021
PECmd – Windows Prefetch Analysis For Incident Responders
November 29, 2021
Proxyshell Vulnerability – Large Exploitation of Microsoft Exchange Servers
November 26, 2021
Autoruns v14.06 – Malware Autostart locations for Incident Responders
November 25, 2021
Sigcheck v2.82 – Quick Malware Auditing for Incident Responders
November 24, 2021
Load more
