Threat Intel Versus Threat Hunting, What’s the Difference?
MITRE ATT&CK Matrix – Custom C2 Protocol
AI-Hunter v3.5.0 Has Been Released!
MITRE ATT&CK Matrix – C2 Connection Proxy
Identifying Long Connections with Bro/Zeek
Industrial IoT Security
Detecting Beacons With Jitter
MITRE ATT&CK HTTPS
Identifying Beacons Through Session Size Analysis
Log Analysis Part 3 – Lateral Movement
Log Analysis Part 2 – Detecting Host Attacks: Or, How I Found and Fell in Love with DeepBlueCLI
Log Analysis Part 1 – Enterprise Logging Approaches