open-menu
closeme
Potential File Download via a Headless Browser
calendar
Oct 15, 2024
·
Domain: Endpoint
OS: Windows
Use Case: Threat Detection
Tactic: Command and Control
Resources: Investigation Guide
Data Source: Windows
Data Source: Elastic Endgame
Data Source: Elastic Defend
Data Source: System
Data Source: Microsoft Defender for Endpoint
Data Source: SentinelOne
Data Source: Sysmon
·
Share on:
twitter
facebook
linkedin
copy
Suspicious Access to LDAP Attributes
calendar
Oct 15, 2024
·
Domain: Endpoint
OS: Windows
Use Case: Threat Detection
Tactic: Discovery
Data Source: System
Data Source: Active Directory
Data Source: Windows
·
Share on:
twitter
facebook
linkedin
copy
Rapid7 Threat Command CVEs Correlation
calendar
Aug 6, 2024
·
OS: Windows
Data Source: Elastic Endgame
Data Source: Windows
Data Source: Network
Data Source: Rapid7 Threat Command
Rule Type: Threat Match
Resources: Investigation Guide
Use Case: Vulnerability
Use Case: Asset Visibility
Use Case: Continuous Monitoring
·
Share on:
twitter
facebook
linkedin
copy
to-top