Securehat
@FranticTyping
Search
⌃
K
Links
Blog Overview
💣
CobaltStrike
Cobalt Strike Staging and Extracting Configuration Information
Fighting Back Against Cobalt Strike - Detection Ideas
🔬
Malware Analysis
Tool-Less Extraction of IOCs from an Emotet Maldoc
Extracting the Cobalt Strike Config from a TEARDROP Loader
💉
Process Injection and Similar Topics
Shellcode Execution via EnumSystemLocalA
Manually Implementing Inline Function Hooking
Detecting Process Injection using Microsoft Detour Hooks
🔍
Detection Experiments
Detecting Parent Process Spoofing using KrabsETW
Chainsaw Tool - Search and Hunt Through Event Logs
Hunting for C3 Activity
📘
High Level Blue Team Topics
Scaling Detection and Response Operations
Powered By
GitBook
Comment on page
Scaling Detection and Response Operations
A couple of blog posts that I wrote in my day job:
Scaling Detection and Response Operations at Coinbase
Scaling Detection and Response Operations at Coinbase Pt2
Scaling Detection and Response Operations at Coinbase pt3
Detection Experiments - Previous
Hunting for C3 Activity
Last modified
2mo ago