Windows Core Processes | Threat Hunting & Cybersecurity | Process Explorer

preview_player
Показать описание
Hey everyone! Today's video is on common Windows processes. Have you ever opened up your task manager and wondered if a .exe or other process was actually malware running on your system? Well, the best place to start is by learning some of the basic Windows processes and what the normal baseline should look like. We'll be talking about Process Explorer (an advanced system utility) and some of the ways to spot the ways threat actors might hide their malware in plain sight! As a SOC analyst, you'll be alerted to events involving these processes, and you can use your skills to determine whether they're benign or an indicator of an attack.

00:00 Intro
00:26 What is a Windows Process?
01:04 Common Indicators
02:45 System
10:06 Outro

Links:

Video Assets:
  1. Cyber Gray Matter
  2. task manager malware
  3. windows processes
  4. threat hunting
  5. security analyst
  6. malware analysis
Рекомендации по теме
Windows Core Processes 0:10:30

Windows Core Processes | Threat Hunting & Cybersecurity | Process Explorer

Understanding Windows Core 0:19:24

Understanding Windows Core Processes For Cyber Security Analysts | TryHackMe

Windows 10 Core 0:21:18

Windows 10 Core Process explained [windows process tree / parent child relationship / genealogy]

Try Hack Me: 0:32:15

Try Hack Me: Core Windows Processes

Windows Processes 0:05:31

Windows Processes

[Windows] Enable missing 0:00:50

[Windows] Enable missing CPU cores in Windows

Attacking Windows Protected 0:05:16

Attacking Windows Protected Process Light with PPLdump | Threat ShapShot

windows 10 virus 0:01:48

windows 10 virus and threat protection (start actions)

Understanding CVE-2024-38014: Elevation 0:08:07

Understanding CVE-2024-38014: Elevation of Privilege in Windows Installer

Why/How to Threat 0:06:40

Why/How to Threat Hunting With Windows Process Creation/Termination (Event ID 4688/4689) Logs

How to tell 0:03:40

How to tell if your windows 10 or 11 computer has been hacked

How to Check 0:02:38

How to Check How Many Cores Your CPU(Processor) Has on Windows 10

Windows Secure Boot 0:09:36

Windows Secure Boot Compromised! What You Need to Know by a Retired Microsoft Engineer

How to Identify 0:08:36

How to Identify Malware and illegitimate Processes in Windows

How to Discover 0:10:39

How to Discover Windows Run Key Persistence When Threat Hunting

Windows Process Genealogy 0:07:08

Windows Process Genealogy - Update

How to Fix 0:01:02

How to Fix Windows defender update problem

How To Get 0:08:01

How To Get LOWER PROCESSES on Windows! (LOWER INPUT DELAY & MORE FPS)

you NEED to 0:27:39

you NEED to learn Windows RIGHT NOW!!

Windows Security Tips 0:18:33

Windows Security Tips

Windows Internals Crash 1:02:10

Windows Internals Crash Course

Understainding Windows OS 0:24:20

Understainding Windows OS Processes and Internals | TryHackMe Internals

Windows 11 Core 0:03:37

Windows 11 Core Isolation (Should you Enable or Disable) Important ALERT!!

Rapid Windows Memory 0:15:22

Rapid Windows Memory Analysis with Volatility 3

Комментарии
Автор

Great video! Thanks for posting. This was actually a really good starting point to do more research.

khayla_matthews