PinnedEnes AdışenDLL Hijacking BasicsDLL Hijacking is a type cyberattack where a malicious actor takes advantage of a system’s search order for dynamic link libraries (DLL) to…Aug 14, 20231Aug 14, 20231
PinnedEnes AdışenHow to prevent a program with elevated privileges to terminate specific programs in WindowsIn Windows, some programs can force the user to start the program in administrator mode, and then constantly terminate other processes in…Jul 13, 2023Jul 13, 2023
Enes AdışeninSystem WeaknessSOC131 EventID:67— Reverse TCP Backdoor Detected — letsdefend.ioLet’s start with alert report.Sep 14, 2023Sep 14, 2023
Enes AdışeninSystem WeaknessSOC134 EventID:81 — Suspicious WMI Activity — letsdefend.ioIn this article we continue where we left off with letsdefend.io alert solutions, with SOC134 EventID:81 — Suspicious WMI Activity.Aug 28, 2023Aug 28, 2023
Enes AdışenSOC101 EvendID: 87 — Phishing Mail Detected — letsdefend.ioIn this article we continue where we left off with letsdefend.io alert solutions, with Event ID 87:Phishing Mail Detected (SOC101).Aug 26, 2023Aug 26, 2023
Enes AdışeninSystem WeaknessSOC142 — Multiple HTTP 500 ResponseIn this article we continue where we left off with letsdefend.io alert solutions, with Event ID 89: Multiple HTTP 500 Response (SOC142).Aug 24, 2023Aug 24, 2023
Enes AdışeninSystem WeaknessSOC109 EventID:85 — Emotet Malware Detected — letsdefend.ioIn this article we continue where we left off with letsdefend.io alert solutions, with Event ID 85: Emotet Malware Detected.Aug 24, 2023Aug 24, 2023
Enes AdışeninSystem WeaknessSOC141 EventID:86 — Phishing URL Detected — letsdefend.ioLet’s start with examining alert report.Aug 23, 2023Aug 23, 2023
Enes AdışeninSystem WeaknessSOC168 EventID:118 — Whoami Command Detected in Request Body — letsdefend.ioLet’s take a look at the alert report below.Aug 23, 2023Aug 23, 2023
Enes AdışenSOC137 EventID:76— Malicious File/Script Download Attempt — letsdefend.ioIn this walkthrough, we will analyse a letsdefend.io alert. Let’s start with alert information.Aug 23, 20232Aug 23, 20232