Our Sponsors ❤️
TI Feed Tor Connections
Author: Bert-Jan PalsReleased: 12/21/2024
Advanced Vishing KQL Detection
Author: Steven LimReleased: 12/19/2024
Url Haus Abusech Hits In Microsoft Teams
Author: Sergio AlbeaReleased: 12/18/2024
Power Shell Self Pwn
Author: Steven LimReleased: 12/17/2024
Ransomware Tool Matrix Defender Lookup
Author: Jay KeraiReleased: 12/16/2024
Hunting For Registry Artifacts Of Service Creation
Author: Sergio AlbeaReleased: 12/13/2024
Hunting For Process Command Line Artifacts Of Service Creation
Author: Sergio AlbeaReleased: 12/13/2024
Old BIOS Versions
Author: Ugur KocReleased: 12/13/2024
Find Processes With Unusually High Thread Or Handle Counts
Author: Ugur KocReleased: 12/13/2024
Flag Processes With Disproportionately Large Virtual Memory Usage
Author: Ugur KocReleased: 12/13/2024
Identify Top Disk IO Processes
Author: Ugur KocReleased: 12/13/2024
Identify Programs Set To Auto Run At Startup
Author: Ugur KocReleased: 12/13/2024
Check If TPM 20 Is Available
Author: Ugur KocReleased: 12/13/2024
Microsoft Graph Activity Logs Missing Logs
Author: Jose Sebastián CanósReleased: 12/12/2024
Docu Shield NRT Anti Impersonation Email Purge
Author: Steven LimReleased: 12/12/2024
Detecting Teams Red Team Tool Convo C2
Author: Steven LimReleased: 12/11/2024
Hunting Zloader DNS Tunneling
Author: Steven LimReleased: 12/11/2024
Url Haus Abusech Hits In Microsoft Teams
Author: Sergio AlbeaReleased: 12/10/2024
Monitoring M Teams Activities Such As Shared UR Ls One To One Chats And Domains Participating Into Meetings
Author: Sergio AlbeaReleased: 12/10/2024
Enhanced Cloudflare Phishing Email Detections
Author: Steven LimReleased: 12/10/2024
Azure Dev Ops Code Recommendations
Author: Alex VerboonReleased: 12/9/2024
Behaviour Suspicious Named Pipes
Author: Bert-Jan PalsReleased: 12/9/2024
Detect Black Basta Ransomware Campaign RMM Tools Deployment
Author: Steven LimReleased: 12/9/2024
Detect Defender XDR Services And Features Disabled On Devices
Author: Sergio AlbeaReleased: 12/8/2024
Blue Alpha Gamma Drop Detection
Author: Steven LimReleased: 12/7/2024
New URL File NTLM Hash Disclosure Vulnerability Detection 0day
Author: Steven LimReleased: 12/6/2024
Email Events From Email Providers
Author: Jay KeraiReleased: 12/6/2024
Hunting Malicious Oauth Grant By Phished User
Author: Steven LimReleased: 12/5/2024
Identify And Summarize Processor Families In Your Environment
Author: Michalis MichalosReleased: 12/5/2024
Identify Non Compliant Controls With Relevant Remediation Actions
Author: Michalis MichalosReleased: 12/5/2024
Visualization Active CISAKEV
Author: Bert-Jan PalsReleased: 12/3/2024
Detecting Abuse Of Wevtutilexe In LOLBAS Attacks
Author: Steven LimReleased: 12/3/2024
Classifying Browser Extension By Type And Risk Severity
Author: Sergio AlbeaReleased: 12/2/2024
Large Number Of Analytics Rules Deleted
Author: Bert-Jan PalsReleased: 12/2/2024
Any Run Corrupt File Zero Day Attack
Author: Steven LimReleased: 12/2/2024
Sentinel Timeroasting KQL Detection
Author: Steven LimReleased: 12/2/2024
Sentinel KQL Detection For Shadow Hound
Author: Steven LimReleased: 12/1/2024
Inbound Authentication From Public IP
Author: Bert-Jan PalsReleased: 12/1/2024
Audit Justifications For PIM Requests
Author: Jay KeraiReleased: 11/30/2024
Disabling Global Secure Access By Registry
Author: Jay KeraiReleased: 11/30/2024
Hunting Rockstar 2FA
Author: Steven LimReleased: 11/29/2024
AAD Sign In Events Beta Suspicious User Agent
Author: Jay KeraiReleased: 11/28/2024
Cloud App Suspicious Copilot Agent Detection
Author: Steven LimReleased: 11/27/2024
Endpoint SMB Exposed On Public Internet
Author: Steven LimReleased: 11/26/2024
Anomalies Unusual Anomaly
Author: Jose Sebastián CanósReleased: 11/25/2024
Get To Know Your Misp Threat Intelligence Feed
Author: Michalis MichalosReleased: 11/24/2024
Audit Justifications For Self Approval PIM Requests
Author: Jay KeraiReleased: 11/24/2024
Hunting Malicious Copilot Agent
Author: Steven LimReleased: 11/23/2024
Detecting Phishing Emails With Cloudflare R2 UR Ls
Author: Steven LimReleased: 11/22/2024
Rating ISP To Detect Potential Attacks And IO Cs Source
Author: Sergio AlbeaReleased: 11/21/2024