Having a look at a few new fields in MDE

Having a look at a few new fields in MDEI noticed that there has been a few new fields added to the Advanced hunt tables. These field...

In threat hunting, Feb 28, 2025

All Stories

Having a look at a few new fields in MDE

Having a look at a few new fields in MDEI noticed that there has been a few new fields added to the Advanced hunt tables. These fields can be useful for threat hunting and incident re...

In threat hunting, Feb 28, 2025

Look into couple of suspicous registry activities

Look into couple of suspicous registry activities

In threat hunting, Feb 08, 2025

Hunting for Windows Subsystem for Linux based attacks

Hunting for WSL based Badness

In threat hunting, Nov 10, 2024

The DFIR thing reg parsing #1

This blog post was lost in migration from Wordpress to Github Pages. :(

In dfir, Aug 29, 2024

The DFIR thing

The DFIR.. what?

In dfir, Jul 27, 2024

Impacket - Part 3

Continuing with Impacket

In threat hunting, Jun 01, 2024

Impacket - Part 2

Hello mr. Impacket – I am back!

In threat hunting, Apr 27, 2024

Exploring hunting options for catching Impacket

Hunting for usage of Impacket

In threat hunting, Apr 13, 2024