- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
Most Analysts Get These 4 Fields Wrong Every Time #ThreatHunting
Reading SIEM & EDR logs without knowing what matters is like searching for treasure with no map! 🗺️
This is where most junior analysts get stuck — staring at thousands of lines of data with no clue what actually drives investigations.
🔎 In this video, we break down a few critical fields that every SOC analyst should know when analyzing logs:
⏱️ Timestamp – Know when it happened. Correlate across tools. Build your timeline.
📄 File – What file was accessed, dropped, modified, or executed? This can be the smoking gun or the start of the trail.
🖥️ Host – Find the who and where. Is it a domain controller? A jump box? A dev box?
👤 Username & Service Accounts – Know who ran what. Was it a legit user? A service account? Or something shady?
These 4 simple fields tell a massive story if you know how to read between the lines.
AND this is just the beginning. 👀
🚀 Ready to master this and break into cybersecurity with real skills?
📞 Book a call today and join the #1 cybersecurity training program on the market — built by pros, trusted by future leaders.
🔗 Link in bio. Let’s get straight to it! Secure your future and freedom in Cyberspace!
#SIEMLogs #EDRAnalysis #ThreatHunting #BlueTeamOps #CyberSecurityTraining #SecurityAnalystLife #DetectionEngineering #MITREATTACK
Видео Most Analysts Get These 4 Fields Wrong Every Time #ThreatHunting канала William Sims | Cythority
This is where most junior analysts get stuck — staring at thousands of lines of data with no clue what actually drives investigations.
🔎 In this video, we break down a few critical fields that every SOC analyst should know when analyzing logs:
⏱️ Timestamp – Know when it happened. Correlate across tools. Build your timeline.
📄 File – What file was accessed, dropped, modified, or executed? This can be the smoking gun or the start of the trail.
🖥️ Host – Find the who and where. Is it a domain controller? A jump box? A dev box?
👤 Username & Service Accounts – Know who ran what. Was it a legit user? A service account? Or something shady?
These 4 simple fields tell a massive story if you know how to read between the lines.
AND this is just the beginning. 👀
🚀 Ready to master this and break into cybersecurity with real skills?
📞 Book a call today and join the #1 cybersecurity training program on the market — built by pros, trusted by future leaders.
🔗 Link in bio. Let’s get straight to it! Secure your future and freedom in Cyberspace!
#SIEMLogs #EDRAnalysis #ThreatHunting #BlueTeamOps #CyberSecurityTraining #SecurityAnalystLife #DetectionEngineering #MITREATTACK
Видео Most Analysts Get These 4 Fields Wrong Every Time #ThreatHunting канала William Sims | Cythority
Комментарии отсутствуют
Информация о видео
7 октября 2025 г. 23:13:45
00:02:14
Другие видео канала
Hacking the Hackers: How the MITRE ATT&CK Framework Reveals Attacker Patterns
Dark Web vs Public Web: What is the Difference
Your First Cybersecurity Job Starts Here | Microsoft Defender Tutorial
Real Incident Response: 22 Alerts, Process Tree & Confirmed Malware | Microsoft Defender EDR
Analyzing Network Connections in CrowdStrike
From Unemployed to $160K, Building Wealth using Life Insurance (VUL) with Kenny Charles (Equitable)
Learning QRadar SIEM in Seconds with A.I.
SOC Analyst Closes a Real Incident | CrowdStrike + Defender Part 2
Why Cybersecurity Degrees Are Useless
7 Things I Wish I Knew Before Starting Cybersecurity
Why You Shouldn't Copy and Paste AI-Generated Content #CyberSecurity #ThinkBeforeYouPrompt
What is a Shift Turnover Report
They Blocked ONE IP and Lost 2 Million in Minutes
How to Handle Cybersecurity Alerts: Severity Levels Explained
Every Detection Tells You What Threat Actors Are Doing #CyberDefense #MITREATTACK #ThreatHunting
QRadar vs. Other SIEMS: Alerts, Offenses and Detections
Work in a Live SOC: Hands-On Cybersecurity Training
Suspicious User Creation in QRadar SIEM! | ChatGPT Assists Analyst
$300,000K Gone in Seconds! Meeting, Invoice, Scam
Introduction to Use Cases and Alert Types
