Linux Log Analysis Case Study | Detecting SSH Brute Force Attacks
We covered Linux authentication logs, log files locations in Linux, Linux log analysis tools available in Linux…
CTF Writeups Walkthrough
Buffer Overflow Exploitation with Immunity Debugger | TryHackMe Buffer Overflow
We covered the first part of buffer overflow training using TryHackMe Buffer Overflow room which is part…
Network Forensics with Powershell | TryHackMe Windows Network Analysis
We covered network analysis and forensics on Windows using Powershell and CMD. We analyzed an infected machine…
Threat Hunting with Elastic Search | TryHackMe Threat Hunting: Pivoting
We covered part two of threat hunting with elastic search. We covered queries and methodologies to uncover…
Loki Locker Ransomware Detection | Windows Events Logs Analysis
We covered analyzing Windows events logs using Python-evtx and chainsaw. We started with extracting Powershell logs and…
Linux Privilege Escalation | TryHackMe common priv esc
We covered threat hunting in-depth, compared threat hunting with incident response, we covered common Linux Privilege Escalation…
Threat Hunting Techniques in Cyber Security | TryHackMe Threat Hunting: Foothold
We covered threat hunting in-depth, compared threat hunting with incident response, covered a MITRE-based approach to hunt…
Windows Privilege Escalation with Metasploit | TryHackMe CyberLens CTF
We covered a very easy penetration testing challenge where we started with an Nmap scan followed by…
SOAR in Cyber Security Explained | TryHackMe SOAR
What is SOAR Security Orchestration, Automation, and Response (SOAR) platforms allow organizations to analyze threat intelligence efficiently,…
Basics of Network Traffic Analysis | TryHackMe Traffic Analysis Essentials
We covered network traffic analysis essentials for the purpose of incident response and network troubleshooting. This was…
Aurora EDR for Cybersecurity & Incident Response | TryHackMe Aurora EDR
In this post , we covered Aurora endpoint and detection response agent tool that is used in…
Using SOC & Threat Intelligence in Cybersecurity | TryHackMe Threat Intelligence for SOC
In this post , we covered the concept of threat intelligence, how it’s performed and what are…
Understanding Tactical Detection and Detection Engineering | TryHackMe Intro to Detection Engineering
In this post , we covered an introduction to tactical detection where we used sigma rules to…
Investigating a Hacked PhpMyAdmin Database With The Elastic Stack | TryHackMe Slingshot
We covered investigating a cyber incident scenario ,where PhpMyAdmin database was hacked along with its e-commerce website,…
Splunk Search Processing Language | TryHackMe Splunk: Exploring SPL
We covered an introduction to Splunk Search Processing Language (SPL) and discussed the basic commandsand various types…
Dynamic Malware Analysis of Konni RAT Malware APT37 With Any.Run
We covered an introduction to logging where we discussed the logic of creating logs and we analyzed…
Introduction to Logging & Logs | TryHackMe Intro to Logs
We covered an introduction to logging where we discussed the logic of creating logs and why we…
Attack and Defense Strategies with MITRE ATT&CK Framework
We demonstrated the cybersecurity framework ATT&CK and shield for security strategies and active defense. We also covered…
Analyzing Cybersecurity Incidents with Zeek IDS | TryHackMe Zeek Exercises
We covered examples of analyzing cybersecurity incidents such as Anomalous DNS, phishing attacks and the Log4j vulnerability…
How to use TheHive | Security Incident Response Platform | TyrHackMe TheHive Project
We discussed and introduced TheHive platform which is used as a security incident response platform for collaboration…
