Tag feed

#soc

124 posts34 followers

Trending tags this week

Phishing Analysis: A Blue Team Guide to Email Threat Investigation

10h ago · 8 min read · This post covers the full analysis workflow — how email works, types of phishing, collecting artifacts, analyzing them with tools, and taking defensive action. How Email Works Before analyzing phishi

Join discussion

PPromisepromise-security.hashnode.dev

0

Analysing a Simulated Web Breach with Splunk (Deloitte Forage Cyber Task)

4d ago · 2 min read · 1. Getting the logs into Splunk The task provided a web_activity.log file with HTTP requests grouped by internal IP addresses. My first step was to bring this data into Splunk so I could query and vis

Join discussion

AIaditya InfosecTrainall-about-cyber.hashnode.dev

0

The Invisible Threat: Why Your SOC is Only as Good as Its Data

6d ago · 4 min read · In the high stakes world of cybersecurity, a Security Operations Center (SOC) often feels like a cockpit during an emergency. Alarms are screaming, screens are flashing, and the pressure to make a spl

Join discussion

SASimiloluwa Adelowothecyberlight.hashnode.dev

0

What 6 months inside NNPC's SOC taught me about cybersecurity in the oil and gas sector

Mar 27 · 14 min read · I did not expect to end up inside a Security Operations Center at Nigeria's largest oil company. I expected a standard university internship sitting through presentations, shadowing senior staff, and

Join discussion

JJebitoksharonjebitok.com

0

Microsoft Intune Monitoring (TryHackMe)

Mar 25 · 17 min read · Introduction Microsoft Intune is one of the most widely used Mobile Device Management (MDM) platforms in the enterprise. It is a powerful tool in the hands of IT and security teams, but it can also be

Join discussion

LSLEWIS SAWElewisawe.hashnode.dev

0

Juicy Details - THM Challenge Room Walkthrough

Mar 25 · 6 min read · Introduction You were hired as a SOC Analyst for one of the biggest Juice Shops in the world and an attacker has made their way into your network. Your tasks are: Figure out what techniques and tool

Join discussion

ZZainsplunk-threat-hunt.hashnode.dev

0

I Tracked an Attacker Who Typed 'ls' on a Windows Server

Mar 25 · 3 min read · The attacker scanned a Joomla website with 17,547 requests, brute-forced the admin panel with 412 passwords in under two seconds, uploaded an encrypted PHP backdoor, got a shell, and typed ls. On a Wi

Join discussion

JJebitoksharonjebitok.com

0

Detecting AD Post-Exploitation (TryHackMe)

Mar 23 · 18 min read · Active Directory post-exploitation is where an attacker's real objectives come into focus. After achieving domain compromise, threat actors move into their endgame — whether that's establishing long-t

Join discussion

SNS Nsolomonneas.hashnode.dev

0

I Built 7 MCP Servers for Security Tools. The Protocol Was the Easy Part.

Mar 23 · 5 min read · I Built 7 MCP Servers for Security Tools. The Protocol Was the Easy Part. I wanted my AI agent to talk directly to my security stack. Not through copy-pasted log snippets. Not through screenshots of dashboards. Actual tool calls against live data. So...

Join discussion

JJebitoksharonjebitok.com

0

SharePoint Online Monitoring (TryHackMe)

Mar 20 · 13 min read · Introduction SharePoint Online is one of the most targeted M365 services, as it often stores sensitive files and can be used to propagate the attack. This room will explore the most common attack scen

Join discussion

#soc

Search Hashnode

#soc

Trending tags this week

Phishing Analysis: A Blue Team Guide to Email Threat Investigation

Analysing a Simulated Web Breach with Splunk (Deloitte Forage Cyber Task)

The Invisible Threat: Why Your SOC is Only as Good as Its Data

What 6 months inside NNPC's SOC taught me about cybersecurity in the oil and gas sector

Microsoft Intune Monitoring (TryHackMe)

Juicy Details - THM Challenge Room Walkthrough

I Tracked an Attacker Who Typed 'ls' on a Windows Server

Detecting AD Post-Exploitation (TryHackMe)

I Built 7 MCP Servers for Security Tools. The Protocol Was the Easy Part.

SharePoint Online Monitoring (TryHackMe)