The Endgame Guide To Threat Hunting: Practitioner’s Edition
Threat hunting is the process of actively looking for signs of malicious activity within enterprise networks without prior k…
Invoke-Adversary – Simulating Adversary Operations
Invoke-Adversary is a PowerShell script that helps you to evaluate security products and monitoring solutions based on how w…
C2 Hunting
Here is the latest post by Jack Crook (@jackcr) in which he discusses detecting and/or hunting for C2 traffic. You can find …
Hunt Evil: Your Practical Guide to Threat Hunting
This eBook will guide you through how to assess and improve your threat hunting capabilities, how to prioritize what to hunt…
Splunking the Endpoint: Threat Hunting with Sysmon
In this post Michael Haag describes utilizing Sysmon to perform threat hunting. You will learn how to setup the tools you ne…
