Incident Analysis with ELK Kibana | HTTP Logs Analysis | TryHackMe ItsyBitsy
We covered cyber incident analysis with ELK Kibana or Elastic Search. We covered http logs pulled from a compromised…
Blue Team
Splunk SIEM Basics For Beginners | TryHackMe Splunk: Basics
Introduction We covered the basic fundamentals of Splunk for beginners. We explored data collection through different methods including but…
Cyber Incident Investigation with Splunk | TryHackMe Investigating with Splunk
Introduction We covered investigating a cyber incident with splunk. We investigated the events generated on compromised windows machines and…
Investigate an Infected Machine with Splunk | TryHackMe Benign
Introduction We covered investigating an infected windows machine using Splunk. We investigated Windows event logs and specifically process execution…
Ransomware Investigation with Splunk | TryHackMe PS Eclipse
Introduction We used Splunk to investigate the ransomware activity on a Windows machine. The ransomware was downloaded to the…
Analyzing a Hacked WebServer With Wireshark | HackTheBox Intro To Blue Team | Chase
Introduction One of our web servers triggered an AV alert, but none of the sysadmins say they were logged…
Security Onion Training
Detecting DNS Fast Fluxing Domains Fast Flux is a technique that hides and conceals the real identity of the…