Facebook
Instagram
Linkedin
Home
Active Directory Attack
Network Attack
SIEM
TOOLS
IOC
Mitre Att&ck
E-Mail Attack
Editors Pick
Search
Security Investigation
Be the first to investigate
Home
Active Directory Attack
Threat Hunting Using Windows Security Log
CVE-2023-21554 – Hunt For MSMQ QueueJumper In The Environment
OS Credential Dumping- LSASS Memory vs Windows Logs
Credential Dumping using Windows Network Providers – How to Respond
The Flow of Event Telemetry Blocking – Detection & Response
Network Attack
How Does DGA Malware Operate And How To Detect In A…
DNS sinkholes to Prevent Malware? How did it work?
Threat Hunting using DNS logs – Soc Incident Response Procedure
What is Port Forwarding and the Security Risks?
Threat Hunting using Firewall Logs – Soc Incident Response Procedure
SIEM
How to Detect Malware C2 with DNS Status Codes
Ngrok Threat Hunting: Detect Hackers at the End of the Tunnel
The Most Important Data Exfiltration Techniques for a Soc Analyst to…
Soc Interview Questions and Answers – CYBER SECURITY ANALYST
Anatomy Of An Advanced Persistent Threat Group
TOOLS
DeepBlueCLI – PowerShell Module for Threat Hunting
Pestudio: Initial Malware Assessment Made Simple
How Attackers Manipulate LLMs in ML – Attack Vectors
How to Remove Database Malware from Your Website
PECmd – Windows Prefetch Analysis For Incident Responders
IOC
Phishing Scam Alert: Fraudulent Emails Requesting to Clear Email Storage Space…
Vidar Infostealer Malware Returns with new TTPS – Detection & Response
New WhiskerSpy Backdoor via Watering Hole Attack -Detection & Response
RedLine Stealer returns with New TTPS – Detection & Response
Understanding Microsoft Defender Threat Intelligence (Defender TI)
Mitre Att&ck
Threat Hunting Playbooks For MITRE TACTICS
Masquerade Attack Part 2 – Suspicious Services and File Names
Masquerade Attack – Everything You Need To Know in 2022
MITRE D3FEND Knowledge Guides to Design Better Cyber Defenses
Mapping MITRE ATT&CK with Window Event Log IDs
E-Mail Attack
How DKIM SPF & DMARC Work to Prevent Email Spoofing and…
How Email Encryption Protects Your Privacy
How To Check Malicious Phishing Links
Emotet Malware with Microsoft OneNote- How to Block emails based on…
How DMARC is used to reduce spoofed emails ?
Editors Pick
Trending Now
Malware Analysis Course: Practical Training Program for Universities
DeepBlueCLI – PowerShell Module for Threat Hunting
How to Detect Malware C2 with DNS Status Codes
Editors Pick
Malware Analysis Course: Practical Training Program for Universities
SOC CSIRT
-
June 3, 2025
TOOLS
DeepBlueCLI – PowerShell Module for Threat Hunting
SIEM
How to Detect Malware C2 with DNS Status Codes
Network Attack
How Does DGA Malware Operate And How To Detect In A Security Operation Center
Most Recent
Malware Analysis Course: Practical Training Program for Universities
SOC CSIRT
-
June 3, 2025
0
Higher education is a great foundation to which you can add extra training for more impressive results. One of the easiest ways to modernize...
DeepBlueCLI – PowerShell Module for Threat Hunting
Priyadharshini Balaji
-
June 2, 2025
0
DeepBlueCLI is an open-source framework that automatically parses Windows event logs, either on Windows (PowerShell version) or now on ELK (Elasticsearch). Working with DeepBlueCLI DeepBluCLI is...
How to Detect Malware C2 with DNS Status Codes
Anusthika Jeyashankar
-
June 2, 2025
0
DNS (Domain Name System) status codes, also known as DNS response codes or DNS error codes, are numerical codes that indicate the outcome of...
How Does DGA Malware Operate And How To Detect In A Security Operation Center
Anusthika Jeyashankar
-
June 2, 2025
0
GA (Domain Generation Algorithm) malware is a type of malware that uses an algorithm to generate a large number of seemingly random domain names....
Ngrok Threat Hunting: Detect Hackers at the End of the Tunnel
Vignesh Bhaaskaran
-
June 2, 2025
0
What is Ngrok? Ngrok is a program that allows you to access your private systems that are behind NAT or a firewall from the outside (internet)....
Load more
Newsletter
Sign up for Daily Updates
Name*
Email*
Please leave this field empty.
Most Popular
Malware Analysis Course: Practical Training Program for Universities
June 3, 2025
DeepBlueCLI – PowerShell Module for Threat Hunting
June 2, 2025
How to Detect Malware C2 with DNS Status Codes
June 2, 2025
How Does DGA Malware Operate And How To Detect In A Security Operation Center
June 2, 2025
Load more
Editors Pick
Malware Analysis Course: Practical Training Program for Universities
SOC CSIRT
-
June 3, 2025
Editors Pick
Why Crypto-Based Payment Methods Are the Future of E-Commerce
SOC CSIRT
-
May 27, 2025
Editors Pick
Portable Power Stations – Smart Power for Home and Travel
SOC CSIRT
-
May 24, 2025
