#soc

3h ago · 13 min read · Introduction SharePoint Online is one of the most targeted M365 services, as it often stores sensitive files and can be used to propagate the attack. This room will explore the most common attack scen

Join discussion

SMScott McMahanaitransformeronline.hashnode.dev

0

AI Incident Response Integration Is Becoming a Security Requirement

1d ago · 1 min read · Security teams are under pressure from both sides. Threats are becoming faster and more automated, while many incident response workflows are still slowed down by manual triage, fragmented tooling, an

Join discussion

JJebitoksharonjebitok.com

0

Phishing Analysis Tools (TryHackMe)

6d ago · 15 min read · Phishing analysis goes beyond reading email headers manually. In this room, Phishing Emails 2 on TryHackMe, the focus shifts to tooling: automating the extraction of artifacts from suspicious emails a

Join discussion

JJebitoksharonjebitok.com

0

Entra ID Monitoring (TryHackMe)

Mar 13 · 27 min read · Identity is now the primary attack surface in cloud environments. With Entra ID authentication endpoints exposed to the internet by design, attackers don't need to breach a network perimeter they just

Join discussion

JJebitoksharonjebitok.com

0

Detecting AD Initial Access (TryHackMe)

Mar 13 · 24 min read · When people think about Active Directory attacks, they often jump straight to lateral movement and privilege escalation. But before any of that happens, an attacker needs a foothold and in most enterp

Join discussion

LSLEWIS SAWElewisawe.hashnode.dev

0

SigHunt - TryHackMe Walk Through

Mar 12 · 15 min read · Scenario You are hired as a Detection Engineer for your organization. During your first week, a ransomware incident has just concluded, and the Incident Responders of your organization have successful

Join discussion

JJebitoksharonjebitok.com

0

Cyber Crisis Management (TryHackMe)

Mar 7 · 19 min read · Cyber incidents don't always stay small. When an incident escalates beyond what the SOC or CSIRT can handle alone, organisations rely on a Crisis Management Team (CMT) to make high-stakes decisions un

Join discussion

JJebitoksharonjebitok.com

0

Intro to Malware Analysis (TryHackMe)

Mar 7 · 31 min read · Malware analysis is a core skill for any SOC analyst or security professional. As part of working through TryHackMe's SOC path, I tackled the Intro to Malware Analysis room — and it turned out to be m

Join discussion

RRridesh raju bijwerideshcyber.hashnode.dev

0

⭐ SOC250 – APT35 HyperScrape Data Exfiltration Tool Detected Walkthrough (EventID:212)

Mar 7 · 4 min read · In this case study, I investigated a high-severity alert from the LetsDefend platform: SOC250 – APT35 HyperScrape Data Exfiltration Tool Detected This alert simulates activity associated with APT35, a

Join discussion

STSakshi Tripathicia-triad-cybersecurity-grc-beginners.hashnode.dev

0

GRC Analyst Roadmap Day-8 : SOC / SOC 2 Explained

Mar 5 · 4 min read · If you’re preparing for GRC Analyst roles, understanding SOC reports—especially SOC 2—is essential. These reports are widely asked about in interviews and frequently appear in job descriptions. Let’s

Join discussion

Tag feed

Tag feed

#soc

Trending tags this week

SharePoint Online Monitoring (TryHackMe)