Tag feed

#socanalyst

10 posts4 followers

Explore Hashnode

Alternatives

TSTech Skill Schooltechskillschool.hashnode.devJun 10 · 7 min read

Start Your SOC Journey with SOC Analyst Training 101

In today’s digital landscape, cyber threats are evolving at an unprecedented pace. From ransomware attacks targeting critical infrastructure to sophisticated phishing campaigns and advanced persistent

0

JJebitoksharonjebitok.comFeb 12 · 17 min read

AWS Security Logging (TryHackMe)

This write-up covers TryHackMe’s AWS Security Logging room, which focuses on monitoring AWS cloud environments using CloudTrail and GuardDuty. The challenge explores three key security areas: Control Plane monitoring, Managed Services, and Workload s...

0

RRridesh raju bijwerideshcyber.hashnode.devFeb 10 · 4 min read

SOC257 – VPN Connection Detected from Unauthorized Country (EventID:225)

Today we are going to investigate SOC257 – VPN Connection Detected from Unauthorized Country. Even though the severity of this alert is Low, it still has its own importance. The main challenge here is confirming whether the attacker actually gained a...

0

UBUmamaheswari Bbit01net.hashnode.devJan 16 · 3 min read

Snapped Phish-ing Line

Disclaimer Based on real-world occurrences and past analysis, this scenario presents a narrative with invented names, characters, and events. Please note: The phishing kit used in this scenario was retrieved from a real-world phishing campaign. Hence...

0

UBUmamaheswari Bbit01net.hashnode.devJan 12 · 4 min read

h4cked | Tryhackme Walkthrough

Task 1: Oh no! We've been hacked! It seems like our machine got hacked by an anonymous threat actor. However, we are lucky to have a .pcap file from the attack. Can you determine what happened? Download the .pcap file and use Wireshark to view it. ...

0

JJebitoksharonjebitok.comDec 12, 2025 · 12 min read

SOC Alert Triaging - Tinsel Triage (TryHackMe) 🎉🧑‍🎄

This write-up came a little later than expected. The initial version of the Microsoft Sentinel environment was quite difficult to access, and it slowed down a lot of the hands-on progress. Thankfully, TryHackMe updated the Azure access, making everyt...

0

JJebitoksharonjebitok.comSep 13, 2025 · 3 min read

Invite Only (TryHackMe)

As part of my role on the SOC team at Managed Server Provider TrySecureMe, I was tasked with investigating suspicious findings that had been escalated by an L1 analyst. The flagged indicators included a suspicious IP address and a SHA256 hash. Using ...

0

AGAshish Ghimireashishtalks.hashnode.devMay 15, 2025 · 2 min read

🎯 From Suspicion to Confirmation: How I Caught a True Positive in a Live SOC Environment

Working as a Student SOC Analyst at LSU Shreveport has given me the chance to experience firsthand how real-world threat detection works — and recently, I encountered my first true positive security incident that tested my analytical and investigativ...

0

HSHarshal Shahdelvingwithharshal.hashnode.devJul 12, 2024 · 4 min read

Cyber Kill Chain Basics: Recognizing Hacker Tactics and Keeping Safe

In the ever-evolving world of cybersecurity, understanding how attackers operate is critical to building effective defenses. The cyber kill chain is a powerful framework that breaks down a cyberattack into distinct stages, allowing security professio...

0

OCOnuorah clementcheckdisplay.hashnode.devJul 28, 2022 · 2 min read

Relationship Between a SOC Analyst and SIEM

SOC Analyst A SOC analyst is a cybersecurity professional who works as part of a team to monitor and fight threats to an organization's IT infrastructure, and to assess security systems and measures for weaknesses and possible improvements. The Main ...

0

#socanalyst

Search Hashnode

#socanalyst

Explore Hashnode

Start Your SOC Journey with SOC Analyst Training 101

AWS Security Logging (TryHackMe)

SOC257 – VPN Connection Detected from Unauthorized Country (EventID:225)

Snapped Phish-ing Line

h4cked | Tryhackme Walkthrough

SOC Alert Triaging - Tinsel Triage (TryHackMe) 🎉🧑‍🎄

Invite Only (TryHackMe)

🎯 From Suspicion to Confirmation: How I Caught a True Positive in a Live SOC Environment

Cyber Kill Chain Basics: Recognizing Hacker Tactics and Keeping Safe

Relationship Between a SOC Analyst and SIEM

Trending tags this week