Skip to content
TechNotes

TechNotes

Solving IT

  • Home
  • Topics
    • Cloud
    • Cybersecurity
  • Projects
  • About

can

Cybersecurity SOC Analyst Challenge

Investigating SSH brute force Alerts – Part 15

IfeOctober 17, 2024November 9, 2024

Investigating the things to look for in a brute force attack Go to ES > Security > alerts We look to investigate the following when we investigate an Alert and […]

Read More
Cybersecurity SOC Analyst Challenge

Understanding Sysmon for Windows Logs – Part 5

IfeOctober 1, 2024November 9, 2024

Understanding SYSMON For windows, logging is enabled by default, but the log information provided is not enough, it doesn’t not track important events such a process creation, hence the need […]

Read More
Cybersecurity Tools

Exploring the ELK stack for SOC Analysis

IfeMarch 8, 2024November 9, 2024

What is the ELK stack and how can we use it? ELK stands for Elasticsearch, Logstash and Kibana. It is a suite of tools that work together ability to aggregate […]

Read More

Categories

  • Cloud
  • Cybersecurity
  • General
  • Projects
  • SOC Analyst Challenge
  • Tools

Recent Posts

  • Setting Up a Virtual Infrastructure with VMware ESXi, vCenter Server, and vSphere: A (Not so) quick dive!
  • Investigating Malware attachments In Emails – LetsDefend.io
  • Deploying Elastic Defend for EDR (Endpoint Detection and Response) – Part 18
  • Investigating the Command and Control framework – Mythic Agent Exploit – Part 17
  • Investigating RDP Brute force attacks – Part 16
Copyright 2025. All rights reserved.
Powered by RS WP THEMES