OSTechNix

The Commands I Run Before Troubleshooting Any Linux System

Most Linux problems aren't complex. They're poorly observed. These are the exact commands that I run before troubleshooting ...
GitHub

detect_mimikatz_with_powershell_script_block_logging.yml

how_to_implement: To successfully implement this analytic, you will need to enable PowerShell Script Block Logging on some or all endpoints. Additional setup here ...
GitHub

attacker_tools_on_endpoint.yml

description: The following analytic detects the execution of tools commonly exploited by cybercriminals, such as those used for unauthorized access, network scanning, or data exfiltration. It ...