SOAR in Cyber Security Explained | TryHackMe SOAR
What is SOAR Security Orchestration, Automation, and Response (SOAR) platforms allow organizations to analyze threat intelligence efficiently,…
TryHackMe Walkthrough
Investigating Cyber Attacks With Snort | TryHackMe Snort Challenge
We covered using Snort to investigate and stop cyber attacks. This was part of the online lab…
Basics of Network Traffic Analysis | TryHackMe Traffic Analysis Essentials
We covered network traffic analysis essentials for the purpose of incident response and network troubleshooting. This was…
Aurora EDR for Cybersecurity & Incident Response | TryHackMe Aurora EDR
In this post , we covered Aurora endpoint and detection response agent tool that is used in…
Demonstrating Black Box Penetration Testing | TryHackMe Relevant
In this post, we covered a black box penetration testing challenge where we performed initial port scanning,…
Using SOC & Threat Intelligence in Cybersecurity | TryHackMe Threat Intelligence for SOC
In this post , we covered the concept of threat intelligence, how it’s performed and what are…
Understanding Tactical Detection and Detection Engineering | TryHackMe Intro to Detection Engineering
In this post , we covered an introduction to tactical detection where we used sigma rules to…
Investigating a Hacked PhpMyAdmin Database With The Elastic Stack | TryHackMe Slingshot
We covered investigating a cyber incident scenario ,where PhpMyAdmin database was hacked along with its e-commerce website,…
Ransomware Detection with Advanced Elastic Search Queries | TryHackMe Advanced ELK
We covered using advanced queries in Kibana and Elastic Search such as using nested queries, queries to…
Active Directory Penetration Testing | TryHackMe Breaching Active Directory
In this post, we will cover the answers of TryHackMe Breaching Active Directory room in addition to…
Wazuh SIEM Tutorial | Complete Guide | TryHackMe
We covered and explained Wazuh as a SIEM and IDS/IPS solution along with its use case in…
Elastic Stack & Logstash Explained For Data Analytics & Cybersecurity | TryHackMe
We covered and explained Elastic stack that consists of Logstash, Elastic Search and Kibana. The three components…
WordPress XXE Vulnerability | CVE-2021-29447 TryHackMe
We covered a wordpress XXE vulnerability CVE-2021-29447 that allows for sensitive files disclosure and server-side request forgery…
Analyzing HTTP and FTP Traffic with Snort | TryHackMe Snort Challenge – The Basics
We covered using Snort to analyze FTP and HTTP traffic by creating and configuring the appropriate rules….
Event Analysis and Logs Parsing with Splunk | TryHackMe Fixit
We discussed Splunk configuration files namely, props.conf,transforms.conf,fields.conf,inputs.conf, indexes.conf and mentioned the purpose and goal of each one…
Collecting and Analyzing Web Server Logs with Splunk | TryHackMe Splunk: Setting up a SOC Lab
We explained the process of installing and configuring Splunk by showing the steps that involve choosing the…
Splunk Search Processing Language | TryHackMe Splunk: Exploring SPL
We covered an introduction to Splunk Search Processing Language (SPL) and discussed the basic commandsand various types…
Introduction to Logging & Logs | TryHackMe Intro to Logs
We covered an introduction to logging where we discussed the logic of creating logs and why we…
Attack and Defense Strategies with MITRE ATT&CK Framework
We demonstrated the cybersecurity framework ATT&CK and shield for security strategies and active defense. We also covered…
Analyzing Cybersecurity Incidents with Zeek IDS | TryHackMe Zeek Exercises
We covered examples of analyzing cybersecurity incidents such as Anomalous DNS, phishing attacks and the Log4j vulnerability…
