TryHackMe - Splunk BOTSv1 (APT Scenario) Walkthrough -
In this video I will be using Splunk BOTS v1 (Boss of the SOC v1) to practice SPL commands and hone my investigation/threat hunting skills. Join me as we try to retrace the actions of the fictional APT group "P01s0n1vy".
Follow/Connect:
Blog: https://micahsoday.github.io
LinkedIn: https://www.linkedin.com/in/micah-fun...
TryHackMe: https://tryhackme.com/p/M0dChild
Link to Room:
https://tryhackme.com/room/bpsplunk
Видео TryHackMe - Splunk BOTSv1 (APT Scenario) Walkthrough - канала Micahs0day
Follow/Connect:
Blog: https://micahsoday.github.io
LinkedIn: https://www.linkedin.com/in/micah-fun...
TryHackMe: https://tryhackme.com/p/M0dChild
Link to Room:
https://tryhackme.com/room/bpsplunk
Видео TryHackMe - Splunk BOTSv1 (APT Scenario) Walkthrough - канала Micahs0day
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Cybersecurity HomeLab Pt.3 - DMZ
LetsDefend (SOC Analyst) - Event ID #113: Suspicious Certutil.exe Usage
Beginner Cloud Project | Cloud Resume Challenge Overview
TryHackMe - Benign (Splunk Investigation)
Deploying Linux Based Amazon EC2 Instance in AWS
PwnedLabs | LOOT Exchange, Teams, and SharePoint Data with GraphRunner
PwnedLabs | Intro to AWS IAM Enumeration
Cybersecurity HomeLab Pt.2 - VLANs
LetsDefend (SOC Analyst) - Event ID #119: Possible IDOR Attack Detected
Docker x VSCode | Getting Started with Dev Containers
TryHackMe - Sigma
Cloud Resume Challenge Static Website S3
LetsDefend (SOC Analyst) - Event ID #74: Data Leak via Mailbox Forwarding Detected
Work From Home Desk Overhaul (Cybersecurity Edition)
Cybersecurity (SOC Analyst) | Top 3 Underrated Skills
CompTIA Cybersecurity Analyst (CySA+) | CS0-002 | Resources & Tips to Pass!
Going for Gold | BTL1 | I Passed!
LetsDefend (SOC Analyst) - Event ID #92: Ransomware Detected
TryHackMe - Investigating Windows
LetsDefend (SOC Analyst) - Event ID #93: Phishing Email Detected - Excel 4.0 Macros