Some stuff about security..

DISCLAIMER: This blog is a set of personal notes I have decided to make public. Please, ignore any typo or language error

Friday, February 24, 2017

Hunting Retefe with Splunk - some interesting points

›
While I was creating some Splunk use cases to detect malware (together with Sysmon ) I was doing some test with malware Refete which I wrote...
Monday, February 13, 2017

Hunting Mimikatz launched by PowerShell

›
Following my last post about how to hunt for malicious PowerShell commands, I'm interested to detect Mimikatz once it is launched thr...
Friday, February 10, 2017

Hunting malicious behaviour abusing PowerShell with Sysmon and Splunk

›
Sysmon is a monitoring tool which combined with Splunk makes an excellent tandem for threat hunting.  A good example was presented by  Tom...
‹
›
Home
View web version
Powered by Blogger.