Windows Account Types
Popular Posts
-
Initial access: This basically means how an attacker gets into your environment. its the first step where an attacker tries to gain entry in...
-
Story Logs Townhall city Townhall city logs
-
Reconnaissance Some guard duty findings types related to reconnaissance are below. AWS GuardDuty detects a wide range of suspicious or mal... -
Multiple Login Failures from a Single User Objective: The objective of this use case is to identify brute force attacks that could be dictio...
-
For Linux Systems: SSH Failed Logins: This gets triggered when someone tries to log into a Linux server via SSH (for example, using PuTTY)...
-
Unfamiliar Sign-In means a security event where a login attempt is detected from a device, location, or IP address that was not previousl...
-
Malicious URL access detected means when a user or host attempts a connection to a malicious website, like phishing pages, malware, or comm...
-
Multiple VPN Logins From Different Countries means that the same user account is trying to log in from multiple geographical locations thro...
-
Execution : Adversaries/ Attacker run malicious code on target system, this is one of the most important tactic. It's a calm Tuesday e...
-
The Basics of DNS: The Internet's Address Book Imagine if every time you wanted to call a friend, you had to remember their exact 10-d...
Buy me coffee
#Fuel My Cybersecurity Journey with a Coffee!