APT 29 Threat Hunt

preview_player
Показать описание
This is a 47 minute tutorial of hunting for APT 29 using Windows Sysmon logs stored in an Elasticsearch cluster.

Apparently, I think everything is "interesting."

Check out Valentina Palacin's book on threat hunting:
  1. Wesley B
  2. Descript
Рекомендации по теме
APT 29 Threat 0:47:23

APT 29 Threat Hunt

How We Used 0:33:59

How We Used Elastic Search To Hunt APT29 Hackers | TryHackMe Threat Hunting EndGame

APT29 Persistence / 0:11:42

APT29 Persistence / Lateral Movement via Windows Credential Roaming | Threat SnapShot

TeamViewer Breach Exposed: 0:01:35

TeamViewer Breach Exposed: Massive APT29 Attack!

Put Down Your 0:09:00

Put Down Your Dukes: Hunting For Hacking Group APT 29/APT 37/APT 40's Covert Data Exfiltration

APT29: Unmasking The 0:10:01

APT29: Unmasking The Cozy Bear Hackers Global Campaign

MITRE ATT&CK Framework 0:02:35

MITRE ATT&CK Framework APT29 Exposure

APT29 (Cozy Bear) 0:27:32

APT29 (Cozy Bear) Attack on Microsoft - 2024

Emulating and Detecting 0:08:07

Emulating and Detecting APT29 with Caldera and ATT&CK Evals | Threat SnapShot

APT29 Tactics,Techniques, Procedures 0:05:38

APT29 Tactics,Techniques, Procedures and Preventions

Cybersecurity in a 0:03:15

Cybersecurity in a minute: APT29

APT29 (Cozy Bear) 0:01:32

APT29 (Cozy Bear) RNC Hack

All you need 0:01:43

All you need to know about the APT29 hacking group

UEBA and MITRE 0:07:45

UEBA and MITRE ATT&CK: Detecting APT-29

MITRE APT29 Endpoint 0:03:17

MITRE APT29 Endpoint Evaluation

Cyber Threat Workshop- 1:59:11

Cyber Threat Workshop- APT29 and Vulnerability Intelligence

Threat hunting: from 0:25:25

Threat hunting: from SolarWinds to Hafnium APT

APT29 'Cozy Bear' 0:17:50

APT29 'Cozy Bear' Analysis and Implications

APT29 (Cozy Bear) 0:02:25

APT29 (Cozy Bear) - US think tanks and NGOs (PolarCalm)

Mordor Labs: ATT&CK 0:11:57

Mordor Labs: ATT&CK APT29 Evals Day 1 - Manual

Most Advanced Malware 0:28:59

Most Advanced Malware | Hammertoss | APT29

Threat Hunting for 0:13:29

Threat Hunting for No-Key-Theft-Required Attacks in Trusted Binaries [MITRE ATT&CK T1553.002]

APT HUNTER - 0:24:32

APT HUNTER - Threat Hunting Summit 2016

APT29 (Cozy Bear) 0:02:53

APT29 (Cozy Bear) - 2015 Pentagon Hack (Goldilocks)

Комментарии
Автор

Hello sir, I am new to threat hunting and I am beginner and have limited or no knowledge of penetration testing. Can you please tell if I read the book that you had mentioned a book at the beginning of the video, can I get better at becoming a good threat hunter. Actually I am have the same job but I suck at the threat hunting skills so I need the and I feel like I am lost. I would be really helpful if you could guide me and help me becoming a threat hunter like you. Thanks you for your really amazing video

napster
Автор

Please post more threat hunting videos

napster
Автор

Would it be possible for you to upload the notes file for me, Wesley?

shadymohamed