-
02/10/2017 - A good picture about how a web application works #newbie #web #basic
-
02/10/2017 - Antimalbytes Scan Interface on Windows 10
27/10/2017 Threat Hunting
- https://github.com/giMini/NOAH --> Windows No Agent Hunting
- https://github.com/sonofagl1tch/MalwareResearch/tree/master/noriben --> Monitor VM (use Procmon with profile) & parse
- https://github.com/sonofagl1tch/MalwareResearch/tree/master/cuckooInstall --> Cuckoo Modified script installed
- Powershell Forensics Framework (Visual Studio Solution) https://github.com/Invoke-IR/PowerForensics
- Network Recon Framework - https://github.com/cea-sec/ivre
- Nmap Web GuI - https://github.com/savon-noir/nmap-webgui (bug)
- https://cyber-ir.com/2016/09/23/the-top-10-windows-logs-events-used-to-catch-hackers/
- https://cyber-ir.com/2017/09/23/advance-hunting-with-rsa-netwitness/
- RSA Investigator Community version (https://sites01.marketingstudio.com/283102/CRP/97dfdc08-fbc9-4268-ad90-8977bfd55e58.v2.lt.ashx?Title=Click%20here&Type=2&MicrositePageID=289307&MSPageStem=emcinformation.com%2f283102%2fCRP%2f&DesResID=2908410&URL=https%3a%2f%2fwww.rsa.com%2fcontent%2fdam%2frsa%2fNwInvestigatorSetup-10.6.1.1.696.x64.msi)
- https://www.sans.org/reading-room/whitepapers/logging/detecting-security-incidents-windows-workstation-event-logs-34262