Anyone in the fediverse doing some threat hunting using #ATP or another EDR? Looking for some people to brainstorm techniques with.
I've just started looking at the #XCyclopedia as a source of inspiration - it's has really handy enrichment from a variety of external #LOLBin repositories to see potential misuse examples. It has even started enumerating COM objects which is cool.
https://strontic.github.io/xcyclopedia/intro
Fast, secure and up-to-date instance. PrivacyTools provides knowledge and tools to protect your privacy against global mass surveillance. Website: privacytools.io Matrix Chat: chat.privacytools.io Support us on OpenCollective, many contributions are tax deductible!
I've just started looking at the #XCyclopedia as a source of inspiration - it's has really handy enrichment from a variety of external #LOLBin repositories to see potential misuse examples. It has even started enumerating COM objects which is cool.