all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Svchost triage

Add to bookmarks
Oct. 25, 2023, 4:03 p.m. | /u/Paul_Sec

For [Blue|Purple] Teams in Cyber Defence www.reddit.com

My first blog post in two years, this is a quick little triage guide for unusual DNS connections from
Svchost. A good walkthrough for those new to blue team work!

blog blog post blue blue team blueteamsec connections dns good guide team triage walkthrough work

Visit resource

More from www.reddit.com / For [Blue|Purple] Teams in Cyber Defence

How to enforce usage of Privileged Access Workstations for Admins 4 hours ago | www.reddit.com
access blueteamsec privileged privileged access +1
Attribution of a Russian cyber campaign The Federal Government condemns in the strongest possible terms … 23 hours ago | www.reddit.com
actor apt28 attribution blueteamsec +14
North Korean Actors Exploit Weak DMARC Security Policies to Mask Spearphishing Efforts 2 days, 2 hours ago | www.reddit.com
blueteamsec dmarc exploit north +5
Investigating Microsoft Graph Activity Logs 2 days, 3 hours ago | www.reddit.com
blueteamsec graph logs microsoft
New Ivanti vulnerability 2 days, 4 hours ago | www.reddit.com
blueteamsec can cvss ivanti +4
How an empty S3 bucket can make your AWS bill explode - "As it turns … 2 days, 13 hours ago | www.reddit.com
aws backups bill blueteamsec +9
Any tips for doing a living off the land threat hunt on your own computer? 2 days, 20 hours ago | www.reddit.com
blueteamsec clients computer computers +18
Sodinokibi/REvil Affiliate Sentenced for Role in $700M Ransomware Scheme 2 days, 22 hours ago | www.reddit.com
affiliate blueteamsec ransomware revil +3
A Summary of 6 Months Tracking AiTM Campaigns 3 days, 8 hours ago | www.reddit.com
aitm blueteamsec campaigns tracking

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

IT Security Manager

@ Timocom GmbH | Erkrath, Germany
View on infosec-jobs.com

Cybersecurity Service Engineer

@ Motorola Solutions | Singapore, Singapore
View on infosec-jobs.com

Sr Cybersecurity Vulnerability Specialist

@ Health Care Service Corporation | Chicago Illinois HQ (300 E. Randolph Street)
View on infosec-jobs.com

Associate, Info Security (SOC) analyst

@ Evolent | Pune
View on infosec-jobs.com

Public Cloud Development Security and Operations (DevSecOps) Manager

@ Danske Bank | Copenhagen K, Denmark
View on infosec-jobs.com

Cybersecurity Risk Analyst IV

@ Computer Task Group, Inc | United States
View on infosec-jobs.com
View more jobs