Psexec From Attacker & Analyst Perspective on October 11, 2020 ioc lateral movement psexec siem soc splunk T1570 + threat hunting ioc lateral movement psexec siem soc splunk T1570 threat hunting
Hunting zerologon exploit CVE-2020-1472 With ELK | Splunk on September 28, 2020 Credential Dumping ioc +4 lateral movement mimikatz privilege Escalation siem soc splunk Threat Detection threat hunting zerologon Credential Dumping ioc lateral movement mimikatz privilege Escalation siem soc splunk Threat Detection threat hunting zerologon
Detecting File & FileLess Mimikatz from it's origin in Memory (LSASS) on May 17, 2020 Credential Dumping elk +1 Hunting Mimikatz ioc mimikatz siem splunk threat hunting Credential Dumping elk Hunting Mimikatz ioc mimikatz siem splunk threat hunting