Amazing video! Thank you for giving us detailed insight into your methodology and thought process for this investigation. I have learned so much from this one video!
Thanks that was great. One question. Instead of having to upload log files to splunk for analysis. Can I connect my devices to splunk directly. Secondly can splunk analyze snort log files? I’ve always seen suricata IDS log files in most demo…. Thirdly can you do a video on Microsoft sentinel. Thanks
By the way, the way I could be sure it was script.ps1 was by checking the hashes of all script files which shows them all are distributed by Microsoft, except script.ps1 which also shows as malicious
Amazing video!
Thank you for giving us detailed insight into your methodology and thought process for this investigation.
I have learned so much from this one video!
Great video dude. I like how you teach. Keep it up!
Wonderful video.
Really helpful. Thanks 🙏🏽
Thanks that was great. One question. Instead of having to upload log files to splunk for analysis. Can I connect my devices to splunk directly. Secondly can splunk analyze snort log files? I’ve always seen suricata IDS log files in most demo…. Thirdly can you do a video on Microsoft sentinel. Thanks
yes, you can forward your logs using Splunk Universal Forwarder
Thanks! I was stuck at the end
Man loved it❤
By the way, the way I could be sure it was script.ps1 was by checking the hashes of all script files which shows them all are distributed by Microsoft, except script.ps1 which also shows as malicious
Definitely right it slipped off my mind.
how i become soc analyst hero?
by trying :)
First bro