all InfoSec news
Injected payload memory forensics
July 13, 2023, 5:48 p.m. | /u/Whoami7087
For [Blue|Purple] Teams in Cyber Defence www.reddit.com
I was working on an interesting case for a compromised server, i investigated the disk but didn't find any artifacts for the compromise.However, by doing deep memory forensics, i was able to detect a payload injected into a process, mostly a beacon. Now, I am thinking how could i know the root cause of the compromise without any disk forensics, and only by the detected memory payload
artifacts beacon blueteamsec case compromise compromised detect disk doing find forensics hello memory memory forensics payload process root server thinking working
More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence
Discover Proton Mail registration date with one weird trick…
1 day, 12 hours ago |
www.reddit.com
The 471 Cyber Threat Report 2024
2 days, 3 hours ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Senior - Penetration Tester
@ Deloitte | Madrid, España
Associate Cyber Incident Responder
@ Highmark Health | PA, Working at Home - Pennsylvania
Senior Insider Threat Analyst
@ IT Concepts Inc. | Woodlawn, Maryland, United States