all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

TRYHACKME: Advent of Cyber 2022 [Day 18] -Sigma Lumberjack Lenny Learns New Rules

Add to bookmarks
March 3, 2023, 1:19 p.m. | Ali AK

System Weakness - Medium systemweakness.com

Scenario: Compromise has been confirmed within the Best Festival Company Infrastructure, and tests have been conducted in the last couple of weeks. However, Santa’s SOC team wonders if there are methodologies that would help them perform threat detection faster by analysing the logs they collect. Elf McSkidy is aware of Sigma rules and has tasked you to learn more and experiment with threat detection rules.

Day 18 Learning Objectives: Threat Detection using Sigma

Threat Detection

Threat detection involves proactively pursuing …

aware collect compromise ctf cyber cybersecurity detection detection rules elf festival infrastructure learn logs rules scenario siem sigma sigma rules soc team tests threat threat detection threat intelligence tryhackme

Visit resource

More from systemweakness.com / System Weakness - Medium

Understanding CSRF Attacks: Safeguarding Your Web Applications 1 day, 11 hours ago | systemweakness.com
applications attacks can compromise +26
Opacity — THM 1 day, 11 hours ago | systemweakness.com
penetration testing pentesting tryhackme tryhackme-walkthrough +1
Learning the basics of authentication with Go and htmx 1 day, 11 hours ago | systemweakness.com
encryption go htmx jwt +1
A Simple Git Misstep That Could Open Doors for Hackers 2 days, 17 hours ago | systemweakness.com
article can commit context +19
Exploring JWT Exploitation Methods 2 days, 17 hours ago | systemweakness.com
account account takeover arm continue +16
Unlocking the Network’s Secrets: A Thrilling Journey into Network Penetration Testing 2 days, 17 hours ago | systemweakness.com
cybersecurity don dream fear +15
NIDPS ⚔️ 2 days, 17 hours ago | systemweakness.com
abnormal administrator alert a network +21
How to Streamline Zombie Account Management? 3 days, 21 hours ago | systemweakness.com
access control access management account build +17
Understanding Cybersecurity Threats: Safeguarding Against Digital Perils 3 days, 22 hours ago | systemweakness.com
article consequences critical cyber +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Associate, Cybersecurity Operations

@ Ares Management Corporation | Los Angeles, CA - CULVER CITY
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Peraton | Fort Gordon, GA, United States
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Diverto | Zagreb, Croatia
View on infosec-jobs.com

Lead DevSecOps Engineer

@ DTCC | Tampa, FL, United States
View on infosec-jobs.com

Incident Responder (Fraud Threat Management)

@ Scotiabank | Toronto, ON, CA, M5H1H1
View on infosec-jobs.com

Penetration Tester, Expert (Federal agency) - Tysons, VA - Full Time

@ iSoftTek Solutions | Tysons, Virginia, United States
View on infosec-jobs.com
View more jobs