Memory Forensics Investigation: Uncovering C2 Communication
2026-05-08
SOC Analyst
Answer: 6812
822 words
|
4 minutes
Windows Event Log Analysis: A Practical DFIR Challenge
2026-05-08
SOC Analyst
Answer: 27/03/2023 14:37:09 (27 March 2023 14:37:09 UTC)
913 words
|
5 minutes
Kerberoasting Attack Investigation Log Analysis
2026-05-06
SOC Analyst
We have the following artefacts from the environment:
760 words
|
4 minutes
UltraVNC Backdoor Campaign Sysmon Log Analysis Walkthrough
2026-05-05
SOC Analyst
In this investigation, we familiarize ourselves with key Sysmon Event IDs and how they can be used to detect and analyse malicious activity on a Windows system. The scenario is inspired by Unit 42 (Palo Alto Networks) research into an UltraVNC campaign, where attackers deployed a backdoored version of UltraVNC to maintain persistence. This lab guides you through the initial access stage of that campaign, using a single Sysmon log file as evidence.
727 words
|
4 minutes
CompTIA PenTest+ & Review
2026-01-08
Certificate
CompTIA PenTest+ Certificate
555 words
|
3 minutes
Cover Image of the Post
P.O.O Certificate & Review
2026-01-08
Certificate
P.O.O HTB Pro Lab Certificate
189 words
|
1 minute
Cover Image of the Post
Puppet Certificate & Review
2026-01-08
Certificate
Certificate
271 words
|
1 minute
Cover Image of the Post
Certified Penetration Testing Specialist (CPTS) & Review
2026-01-04
Certificate
HTB Certified Penetration Testing Specialist
618 words
|
3 minutes
Cover Image of the Post
1
2
3
© 2026 maine. All Rights Reserved. / RSS / Sitemap
Powered by Astro & Fuwari