Search for a command to run...
Articles tagged with #siem
Link to the challenge/walkthrough on TryHackMe: Traffic Analysis Pitfalls Introduction It is 02:47. Our SIEM fires an alert. Alert: Large Outbound Transfer Source: 10.10.15.44 (WKST-FINANCE-04) D
This write-up came a little later than expected. The initial version of the Microsoft Sentinel environment was quite difficult to access, and it slowed down a lot of the hands-on progress. Thankfully, TryHackMe updated the Azure access, making everyt...
Welcome to Day 3 of Advent of Cyber 2025! As we continue our Advent of Cyber 2025 journey, Day 3 shifts our focus toward one of the most essential skills in modern cybersecurity: log analysis and event investigation. Todayβs challenge builds on pract...
In this article, weβll cover the Log AnalysisβOne Man's False Positive is Another Man's Potpourri writeup as the Day 2 challenge of the Advent of Cyber event challenge. It was interesting to navigate the platform and filter different events and logs ...
In this article, I will write a write-up for Introduction to SIEM that covers Network Visibility through SIEM, Log Sources and Log Ingestion, Why SIEM, Analysing Logs and Alerts, and Lab Work. What does SIEM stand for? Security Information and Event...
