FalconForce | DFIR | Threat hunter | Data Dweller | Splunk | Sysmon
I’ve been a huge fan of MITREs ATT&CK framework ever since its release. It has been of enormous value to…
Sysmon 10.4 has been released and this is one I particularly was looking forward to ever since the release of version 9…
Last night (June 11th 2019) Mark Russinovich released a new version of Sysmon, raising it to…
Over the last couple of nights I've been playing with Azure Sentinel to see how useful it will be as a…
