Outer Web | Explore

Explore >> Select a destination

You are here		www.syspanda.com Threat Hunting: Finding Persistence Mechanisms - Syspanda
\|	\|	blog.virustotal.com Actionable Threat Intel (VI) - A day in a Threat Hunter's life ~ VirusTotal Blog	1.5 parsecs away Travel
\|	\|	Kaspersky's CTI analysts recently released their Asian APT groups report, including details on behavior by different adversaries. Followin...	1.5 parsecs away Travel
\|	\|	www.darkoperator.com PowerShell Basics - Execution Policy and Code Signing Part 2	4.5 parsecs away Travel
\|	\|	[AI summary] The provided text discusses various methods to secure PowerShell environments against potential threats, focusing on monitoring, logging, and policy enforcement. It outlines the use of Group Policy to enable module logging, which helps track PowerShell cmdlet activities. The text also covers the use of Software Restriction Policies (SRP) and AppLocker for controlling application execution. Additionally, it mentions the PowerShell v3 feature __PSLockdownPolicy as a tool for restricting PowerShell functionalities. The author emphasizes the importance of planning and testing these security measures in a controlled environment to ensure effectiveness.	4.5 parsecs away Travel
\|	\|	www.huntress.com Hunt for RedCurl \| Huntress	3.5 parsecs away Travel
\|	\|	Huntress discovered RedCurl activity across several organizations in Canada going back to 2023. Learn more about how this APT operates and how they aim to remain undetected while exfiltrating sensitive data.	3.5 parsecs away Travel
\|	\|	dfirmadness.com Case 001 AutoRuns Analysis - DFIR Madness	31.1 parsecs away Travel
\|		Autoruns analysis for Case 001 (The Stolen Szechuan Sauce), originally published in September of 2020. Hope you enjoy!	31.1 parsecs away Travel