all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Is anyone else running Velociraptor? Have a couple of questions

Add to bookmarks
March 27, 2023, 12:46 p.m. | /u/RatherB_fishing

For [Blue|Purple] Teams in Cyber Defence www.reddit.com

I am running Velociraptor with some great success. The question I have is the logs I am getting from IIS logins are cicra 2018 on some of my installs. The hillarious thing is that Malwarebytes got thrown on some machine to check for rootkits in chrome and firefox, well it is also blocking attempted VPN logins from China and all these fun little places. I am just trying to find a good way to get the full detail logs from …

blocking blueteamsec check china chrome find firefox fun great iis import logins logs machine malwarebytes places question questions rootkits system velociraptor vpn

Visit resource

More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence

How I hacked into Google’s internal corporate assets [tl;dr: dependency confusion] 8 hours ago | www.reddit.com
assets blueteamsec corporate dependency +4
here's my blog on Phishing Email Investigation: A Step-by-Step Analysis 12 hours ago | www.reddit.com
analysis blog blueteamsec email +2
(The) Postman Carries Lots of Secrets - "We estimate over 4,000 live credentials are currently … 15 hours ago | www.reddit.com
blueteamsec cloud credentials live +4
Hunting for a Sliver in a haystack 1 day, 4 hours ago | www.reddit.com
blueteamsec haystack hunting sliver
Nation-State Threat Actors Renew Publications to npm 1 day, 9 hours ago | www.reddit.com
blueteamsec nation npm publications +3
Guidance for Incident Responders 1 day, 12 hours ago | www.reddit.com
blueteamsec guidance incident incident responders
JA4T: TCP Fingerprinting - And How to Use It to Block Over 60% of Internet … 2 days, 1 hour ago | www.reddit.com
block blueteamsec fingerprinting internet +3
ArcaneDoor - New espionage-focused campaign found targeting perimeter network devices 2 days, 3 hours ago | www.reddit.com
arcanedoor blueteamsec campaign devices +6
The not-so-silent type: Vulnerabilities across keyboard apps reveal keystrokes to network eavesdroppers - The Citizen … 2 days, 17 hours ago | www.reddit.com
apps blueteamsec citizen lab keyboard +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Operations Manager (f/d/m), 80-100%

@ Alpiq | Lausanne, CH
View on infosec-jobs.com

Project Manager - Cyber Security

@ Quantrics Enterprises Inc. | Philippines
View on infosec-jobs.com

Sr. Principal Application Security Engineer

@ Gen | DEU - Tettnang, Kaplaneiweg
View on infosec-jobs.com

(Senior) Security Architect Car IT/ Threat Modelling / Information Security (m/f/x)

@ Mercedes-Benz Tech Innovation | Ulm
View on infosec-jobs.com

Information System Security Officer

@ ManTech | 200AE - 375 E St SW, Washington, DC
View on infosec-jobs.com
View more jobs