The Sysmon tool is part of the Sysinternals software suite provided by Microsoft. The Sysmon tool allows us to analyze, and monitor Windows system events and logs. Through Sysmon, we can analyze and investigate system events and use them to identify threats and respond to incidents … This software has become one of the most […]
In the Sysmon 101 course, we teach Sysmon tool from basic to advanced and This is the first part of the Sysmon 101 training course. In this part, we are going to talk about Threat Hunting. WWhat Is Threat Hunting? The concept of threat hunting refers to the process by which we seek to detect […]
In this post, we want to talk about Azure Sentinel. With this product we can Collect, monitor, and investigate data from many sources such as cloud, endpoint, and network devices Azure Sentinel is known as one of the security information and event management (SIEM) platforms on the cloud which was created directly on Microsoft Azure, […]
Elissa Garlin
Think of a news blog that’s filled with content hourly on the day of going live.