Investigate an Infected Machine with Splunk | TryHackMe Benign
Introduction We covered investigating an infected windows machine using Splunk. We investigated Windows event logs and specifically process execution…
Introduction We covered investigating an infected windows machine using Splunk. We investigated Windows event logs and specifically process execution…
Introduction We used Splunk to investigate the ransomware activity on a Windows machine. The ransomware was downloaded to the…
Introduction One of our web servers triggered an AV alert, but none of the sysadmins say they were logged…
Detecting DNS Fast Fluxing Domains Fast Flux is a technique that hides and conceals the real identity of the…