Threat Hunting with Sysmon For Security Operations Center | TryHackMe Sysmon

preview_player
Показать описание
In this video walkthrough, we covered how sysmon works and how to analyze events generated to detect and respond to incidents.
#soc
#cybersecurity
#sysmon
----
Room Link
-------------
Answers
---------
Patreon
Backup channel
My Movie channel:
------------
Receive video documentation
----
Twitter
LinkedIn
Instagram
Facebook
  1. Motasem Hamdan
  2. TryHackMe
  3. Sysmon
  4. SOC
Рекомендации по теме
Threat Hunting via 0:51:01

Threat Hunting via Sysmon - SANS Blue Team Summit

Understanding Sysmon & 0:57:52

Understanding Sysmon & Threat Hunting with A Cybersecurity Specialist & Incident Detection E...

Threat Hunting with 0:50:40

Threat Hunting with Sysmon For Security Operations Center | TryHackMe Sysmon

Advanced Incident Detection 0:39:05

Advanced Incident Detection and Threat Hunting using Sysmon and Splunk - Tom Ueltschi

Threat Hunting using 0:13:42

Threat Hunting using Sysmon | Identify malicious or anomalous activity

Using Sysmon to 3:40:01

Using Sysmon to Improve your Incident Response and Threat Hunting Capabilities

Threat Hunting UAC 0:01:28

Threat Hunting UAC Bypass with Sysmon

How To Setup 0:14:35

How To Setup ELK | Elastic Agents & Sysmon for Cybersecurity

Learning Sysmon - 0:11:45

Learning Sysmon - What is Sysmon? (Video 1)

Threat Hunting with 0:38:40

Threat Hunting with Sysmon - Binary Defense

My “Aha!” Moment 0:33:41

My “Aha!” Moment - Methods, Tips, & Lessons Learned in Threat Hunting - SANS THIR Summit 2019...

Cybersecurity Threat Hunting 0:06:51

Cybersecurity Threat Hunting Explained

Threat hunting with 0:04:32

Threat hunting with Microsoft 365 Defender

Threat Hunting Tutorial: 0:10:47

Threat Hunting Tutorial: Introduction

Threat Hunting Explained 0:00:56

Threat Hunting Explained

Threat Hunting Tutorial- 0:10:18

Threat Hunting Tutorial- Day 11, Hunting Process Creation with Splunk

#BSidesMEsh21 - OpenSourced 3:50:15

#BSidesMEsh21 - OpenSourced Threat Hunting with Graylog + MISP + Sysmon Workshop

Kolide & OSQuery: 0:59:54

Kolide & OSQuery: How to Build Solid Queries and Packs for Detection and Threat Hunting

How To Threat 0:06:01

How To Threat hunt Like A Pro: The Easy Way

Advanced Incident Detection 0:39:05

Advanced Incident Detection and Threat Hunting using Sysmon and Splunk Tom Ueltschi

Stable 36 Endpoint 0:25:32

Stable 36 Endpoint Detection Super Powers on the cheap with Sysmon Olaf Hartong

Hunt for Hackers 0:13:51

Hunt for Hackers with Velociraptor

Common misconceptions and 0:31:22

Common misconceptions and mistakes made in Threat Hunting

ATT&CK Simulator integration 0:19:08

ATT&CK Simulator integration between Splunk, ATT&CK Navigator, SCYTHE, and Sysmon - ThreatHu...

Комментарии
Автор

Great explanations, begining I was following along. By the end I was getting ahead! Great teaching.

craigmac
Автор

Thank you very much. This was very nice

user
Автор

why you don't use the event viewer GUI ?

anasalbeik
Автор

Hello sir. The event _creation_time shows utc time zone . So how to we change the time zone?

SuperChelseaSW
Автор

is it my internet or video quality is very poor

jahanabdulha