Mastodawn

Prashanth

@[email protected]

8 Followers

8 Following

8 Posts

Prashanth Dec 26, 2022

A new #sigma rule was created to detect impersonation executions, which can also be found in SOC Prime now.

https://lnkd.in/gagWwKPq

https://lnkd.in/g45UmXmS

#cybersecurity #socanalyst #informationsecurity #blueteam
#ECI #socprime #sigma_hq #sigma_rules

SOC Prime Platform

Join SOC Prime Platform for collaborative cyber defense, threat hunting, and threat discovery to boost your detection and response capabilities.

Prashanth Nov 12, 2022

All right, everyone! Here's my new blog describing how to bypass UAC and detect it using ELK SIEM
#elk #siem #usecase #ThreatHunting #redteam #blueteam https://eventlogs.in/atomic-red-team-4-bypass-user-account-control/

Atomic Red Team 4: Bypass User Account Control

Hi everybody, it's my pleasure to talk to you again and in today's blog, I will show you how to bypass User Account Control using Atomic Red Team and detect it with the assistance of ELK SIEM for the purpose of monitoring with the help of the ELK SIEM.

Event Logs