Pinned📍 The diligent SOC Analyst always seeks the “Root Cause Analysis” (RCA) of every case.In your daily routine as a SOC Analyst, you will encounter many cases involving URLs, domains, and other elements that need to be checked…Jan 18Jan 18
📍In addition to our previous post and introduction, this section will discuss some scenarios…Let’s start…Jan 23Jan 23
Let’s Defend Writeup — SOC164-Suspicious Mshta Behavior :)!i. primarily look at the details of the alert and how it was formed we notice that “mshta.exe” originates from a low-reputation “.hta”…Mar 21, 2023Mar 21, 2023