FOR508

173 bookmarks

Newest

Velociraptor Course: Digging deeper (May 2021)

Velociraptor Course: Digging deeper (May 2021)

·youtube.com·Mar 26, 2025

Velociraptor Course: Digging deeper (May 2021)

Credential defense analyst reference

Credential defense analyst reference

·appliedincidentresponse.com·Mar 26, 2025

Credential defense analyst reference

Appendix F - Securing Domain Admins Groups in Active Directory

Appendix F - Securing Domain Admins Groups in Active Directory

·docs.microsoft.com·Mar 26, 2025

Appendix F - Securing Domain Admins Groups in Active Directory

Protect privileged ad accounts with five free controls

Protect privileged ad accounts with five free controls

·sans.org·Mar 26, 2025

Protect privileged ad accounts with five free controls

Securing privileged access Enterprise access model - Privileged access

Securing privileged access Enterprise access model - Privileged access

·learn.microsoft.com·Mar 26, 2025

Securing privileged access Enterprise access model - Privileged access

Eric Zimmerman's Results in Seconds at the Command-Line Poster | SANS Poster

Eric Zimmerman's Results in Seconds at the Command-Line Poster | SANS Poster

·sans.org·Mar 26, 2025

Eric Zimmerman's Results in Seconds at the Command-Line Poster | SANS Poster

Hunt Evil | SANS Poster

Hunt Evil | SANS Poster

·sans.org·Mar 26, 2025

Hunt Evil | SANS Poster

Windows Forensic Analysis | SANS Poster

Windows Forensic Analysis | SANS Poster

·sans.org·Mar 26, 2025

Windows Forensic Analysis | SANS Poster

LOLBAS

LOLBAS

·lolbas-project.github.io·Mar 26, 2025

Month of PowerShell: 5 Tips for Getting Started with PowerShell | SANS Institute

Month of PowerShell: 5 Tips for Getting Started with PowerShell | SANS Institute

·sans.org·Mar 26, 2025

Month of PowerShell: 5 Tips for Getting Started with PowerShell | SANS Institute

Getting Started with Microsoft PowerShell

Getting Started with Microsoft PowerShell

·learn.microsoft.com·Mar 26, 2025

Getting Started with Microsoft PowerShell

Power shell quick reference

Power shell quick reference

·appliedincidentresponse.com·Mar 26, 2025

Power shell quick reference

Light side of the force pdf

Light side of the force pdf

·appliedincidentresponse.com·Mar 26, 2025

Light side of the force pdf

Bear Hunting: Tracking Down COZY BEAR Backdoors

Bear Hunting: Tracking Down COZY BEAR Backdoors

·crowdstrike.com·Mar 26, 2025

Bear Hunting: Tracking Down COZY BEAR Backdoors

Exposing the Steps of the Kimsuky APT Group

Exposing the Steps of the Kimsuky APT Group

·picussecurity.com·Mar 26, 2025

Exposing the Steps of the Kimsuky APT Group

Operation Blacksmith: Lazarus targets organizations worldwide using novel Telegram-based malware written in DLang

Operation Blacksmith: Lazarus targets organizations worldwide using novel Telegram-based malware written in DLang

·blog.talosintelligence.com·Mar 26, 2025

Operation Blacksmith: Lazarus targets organizations worldwide using novel Telegram-based malware written in DLang

How Microsoft names threat actors - Microsoft's unified security operations platform

How Microsoft names threat actors - Microsoft's unified security operations platform

·learn.microsoft.com·Mar 26, 2025

How Microsoft names threat actors - Microsoft's unified security operations platform

Nist

Nist

·nvlpubs.nist.gov·Mar 26, 2025

Essential Eight explained | Cyber.gov.au

Essential Eight explained | Cyber.gov.au

·cyber.gov.au·Mar 26, 2025

Essential Eight explained | Cyber.gov.au

The 18 CIS Critical Security Controls

The 18 CIS Critical Security Controls

·cisecurity.org·Mar 26, 2025

The 18 CIS Critical Security Controls

Matrix - Enterprise | MITRE ATT&CK®

Matrix - Enterprise | MITRE ATT&CK®

·attack.mitre.org·Mar 26, 2025

Matrix - Enterprise | MITRE ATT&CK®

FOR508 Cloud Share K01 on Egnyte

·for508.com·Mar 26, 2025

FOR508 Cloud Share K01 on Egnyte

FREE Resources for Cyber Security Professionals | Applied Incident Response

FREE Resources for Cyber Security Professionals | Applied Incident Response

·appliedincidentresponse.com·Mar 26, 2025

FREE Resources for Cyber Security Professionals | Applied Incident Response

'Applied Incident Response Scripts

'Applied Incident Response Scripts

·appliedincidentresponse.com·Mar 26, 2025

'Applied Incident Response Scripts

olafhartong/sysmon-modular: A repository of sysmon configuration modules

olafhartong/sysmon-modular: A repository of sysmon configuration modules

·github.com·Mar 26, 2025

olafhartong/sysmon-modular: A repository of sysmon configuration modules

GitHub - SwiftOnSecurity/sysmon-config: Sysmon configuration file template with default high-quality event tracing

GitHub - SwiftOnSecurity/sysmon-config: Sysmon configuration file template with default high-quality event tracing

·github.com·Mar 26, 2025

GitHub - SwiftOnSecurity/sysmon-config: Sysmon configuration file template with default high-quality event tracing

Greater Visibility Through PowerShell Logging | Mandiant

Greater Visibility Through PowerShell Logging | Mandiant

·fireeye.com·Mar 26, 2025

Greater Visibility Through PowerShell Logging | Mandiant

CyberChef

CyberChef

·gchq.github.io·Mar 26, 2025

The Key to Identify PsExec

The Key to Identify PsExec

·aboutdfir.com·Mar 26, 2025

The Key to Identify PsExec

Finding and Decoding Malicious Powershell Scripts - SANS DFIR Summit 2018

Finding and Decoding Malicious Powershell Scripts - SANS DFIR Summit 2018

·youtube.com·Mar 26, 2025

Finding and Decoding Malicious Powershell Scripts - SANS DFIR Summit 2018