Discussion

ridesh raju bijwe

Documenting my journey into Cybersecurity and SOC Analysis.

Feb 2

🛑 SOC211 – Utilman.exe Winlogon Exploit Attempt Walkthrough

📌 Alert Overview In this investigation, we analyze SOC211 – Utilman.exe Winlogon Exploit Attempt, an alert indicating abuse of a Windows built-in binary (LOLBin) to achieve persistence and privilege escalation on a compromised host. The alert highl...

rideshcyber.hashnode.dev3 min read

#cybersecurity #cybersecurity-1 #infosec-cjbi6apo9015yaywu2micx2eo #vulnerability #alert-triage #learning #learning-in-public #blueteam

Responses

No responses yet.

Search Hashnode

🛑 SOC211 – Utilman.exe Winlogon Exploit Attempt Walkthrough

Responses

Recent in Forum