NetwerkLABS

NetworkMiner

NetworkMiner is an open source network forensics tool that extracts artifacts, such as files, images, emails and passwords, from captured network traffic in PCAP files. NetworkMiner can also be used to capture…

Bharath Narayanasamy

CyBER Tools

TCPView

TCPView is a Windows program that will show you detailed listings of all TCP and UDP endpoints on your system, including the local and remote addresses and state of TCP…

Bharath Narayanasamy

PenTest

Intro to Practical Enterprise Pentesting

Stages Pre-Engagement Information Gathering Vulnerability Assessment Exploitation Post-Exploitation Lateral Movement Proof of Concept Post-Engagement

Bharath Narayanasamy

ZyberAttacks

High-Risk Vulnerabilities in ConnectWise ScreenConnect and Remediation procedure

On February 19, 2024 ConnectWise disclosed two vulnerabilities in their ScreenConnect remote access software. Both vulnerabilities affect ScreenConnect 23.9.7 and earlier. Affected Products: ScreenConnectSeverity: CriticalPriority: 1 - High ScreenConnect is…

Bharath Narayanasamy

Attacking Active Directory

AD Attacks & Tools Timeline

Bharath Narayanasamy

Attacking Active Directory

AD Fundamentals

Ransomware operators have been increasingly targeting Active Directory as a key part of their attack paths. The Conti Ransomware which has been used in more than 400 attacks around the world has…

Bharath Narayanasamy

Attacking Active Directory

Breaching AD

Active Directory (AD) is used by approximately 90% of the Global Fortune 1000 companies. If an organisation's estate uses Microsoft Windows, you are almost guaranteed to find AD. Microsoft AD…

Bharath Narayanasamy

SOC Analyst

Cyber Kill Chain

Cyber Kill Chain Official Page: https://www.lockheedmartin.com/en-us/capabilities/cyber/cyber-kill-chain.html Cyber Kill Chain is a framework created by Lockheed Martin in 2011 and used to model the attacks of attackers. Within this framework, attacker behaviors…

Bharath Narayanasamy

Splunk

Splunk SPL 101

Bharath Narayanasamy

Elastic SIEM Threat Hunting Threat Detection and Incident Response

Practical Threat Hunting using Elastic SIEM: Hunting for Stuxbot

Based on the INTRODUCTION TO THREAT HUNTING & HUNTING WITH ELASTIC module from HTB-Academy Hunting for Stuxbot The Stuxbot cybercrime group operates with a broad scope, seizing upon opportunities as…

Bharath Narayanasamy