Sign in Get started

Tagged in

Falconfriday

FalconForce

A team of highly specialized security professionals

More information

Followers

689

Elsewhere

More, on Medium

Falconfriday

Gijs Hollestelle in FalconForce

FalconFriday — Detecting MMC abuse using “GrimResource” with MDE — 0xFF24

Jos van der Peet in FalconForce

FalconFriday — Using public intelligence feeds to improve detections — 0xFF22

Gijs Hollestelle in FalconForce

FalconFriday — Detecting Active Directory Data Collection — 0xFF21

Active Directory data collection

Henri Hambartsumyan in FalconForce

FalconFriday — Detecting ADCS web services abuse — 0xFF20

Olaf Hartong in FalconForce

FalconFriday — Detecting LSASS dumping with debug privileges — 0xFF1F

Credential dumping from Local…

Henri Hambartsumyan in FalconForce

FalconFriday — Detecting UnPACing and shadowed credentials— 0xFF1E

Gijs Hollestelle in FalconForce

FalconFriday — Detecting malicious modifications to Active Directory — 0xFF1D

Gijs Hollestelle in FalconForce

FalconFriday — Detecting realistic AWS cloud-attacks using Azure Sentinel — 0xFF1C

Olaf Hartong in FalconForce

FalconFriday — Suspicious named pipe events — 0xFF1B

Jos van der Peet in FalconForce

FalconFriday —Monitoring for public shares — 0xFF1A