all InfoSec news
Incident Response scenario questions
Sept. 17, 2023, 8:33 a.m. | /u/Unthiest
cybersecurity www.reddit.com
Couple of hypothetical scenarios I wanted to get a DFIR SME opinion about, what would be your approach as an incident responder.
1) You have a Windows disk/memory image of a compromised system with no further details, where will you start investigating?( Interested to know the approach like which artifcats to start looking first etc.)
2) Customer contacted you to respond to an incident because they have seen a process "blah".exe being launched from a user desktop and that …
compromised cybersecurity dfir disk etc image incident incident responder incident response memory opinion questions responder response scenario start system windows
More from www.reddit.com / cybersecurity
Jobs in InfoSec / Cybersecurity
Consultant Sécurité SI H/F Gouvernance - Risques - Conformité - Nantes
@ Hifield | Saint-Herblain, France
L2 Security - Senior Security Engineer
@ Paytm | Noida, Uttar Pradesh
GRC Integrity Program Manager
@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City
Consultant Active Directory H/F
@ Hifield | Sèvres, France
Consultant PCI-DSS H/F
@ Hifield | Sèvres, France
Head of Security Operations
@ Canonical Ltd. | Home based - Americas, EMEA