CyberWithSharon

CyberWithSharon

#tryhackme-walkthrough

Articles tagged with #tryhackme-walkthrough

Report Writing for SOC L2 (TryHackMe)
Introduction As you move into a senior (Level 2) analyst role, the scope of your responsibilities shifts. Technical alert triage is still part of the job, but your findings now need to reach people be
Mar 26, 202616 min read55
macOS Forensics: Artefacts (TryHackMe)
This writeup covers a macOS Forensics: Artefacts challenge on TryHackMe involving the analysis of a 25GB disk image from a macOS 15.1.1 (Sequoia) system. The investigation required extracting user act
Mar 14, 202651 min read10
Incident Handling With Splunk (TryHackMe)
Website defacement is one of the more visible outcomes of a successful cyberattack, and investigating one end-to-end is a great way to practice mapping attacker behavior across the full Cyber Kill Cha
Mar 14, 202628 min read12
SSTI (TryHackMe)
Server-Side Template Injection (SSTI) is one of those vulnerabilities that looks deceptively simple on the surface but can escalate to full remote code execution faster than most people expect. In thi
Mar 14, 202611 min read15
M365 Monitoring Basics (TryHackMe)
Cloud identity attacks don't announce themselves with malware alerts or network intrusions; they show up as a login. One valid set of credentials is all an attacker needs to walk straight through the
Mar 14, 202622 min read80
Detecting AD Initial Access (TryHackMe)
When people think about Active Directory attacks, they often jump straight to lateral movement and privilege escalation. But before any of that happens, an attacker needs a foothold and in most enterp
Mar 13, 202624 min read22

#tryhackme-walkthrough - CyberWithSharon