Detecting Beacons by System Name with RITA and AC-Hunter

Threat Hunting – Safelisting – Video Blog

Threat Hunting – C2 over DNS – Video Blog

Threat Hunting – FQDN Beacons – Video Blog

Threat Hunting – IP Based Beacons – Video Blog

Threat Hunting – Long Connection Detection – Video Blog

Changing Zeek’s Log Rotation Time

Threat Hunting in Azure with AC-Hunter

Threat Hunting Over the Network With Zeek and RITA

Building a Global Ignore Filter

Simulating a Beacon

Version 6.0.0 of AC-Hunter Has Been Released!