SIEM 200 series Archives - Tristan Dostaler

SIEM 201 — What is Sysmon

by Tristan Dostaler | Nov 25, 2020 | Cybersecurity, Information Technology, InfoSec, SIEM, SIEM 200 series, TL;DR;

In this post I’ll explain what is Sysmon, how to install it and how to use it to detect important pattern.

SIEM 201 — Detecting remote PsExec

by Tristan Dostaler | Nov 24, 2020 | Cybersecurity, DFIR, Information Technology, InfoSec, SIEM, SIEM 200 series

In this post I’ll explain how to detect an attacker that uses PsExec to connect to your computer when you don’t have visibility over the attacker’s computer.

MEGA referal

You can join MEGA, the most secure cloud storage, with this referral link: https://mega.nz/aff=7Y94iYz_csg

SIEM 201 — What is Sysmon

SIEM 201 — Detecting remote PsExec

MEGA referal

Recent Posts

Subscribe!

Support

Follow Me