Cyb3rSn0rlax

Twitter LinkedIn

RDP-NLA ELK4QRADAR

About Cyb3rSn0rlax
🛡️ SOC Engineering
🧞Building an Open SIEM From Scratch
🛡️A Primer to Detection Engineering Dimensions in a SOC Universe
😺GitHub Projects
- ELK4QRadar
- Automating ELK Health Check
💾DFIR
☢️ DEATH : Detection Engineering And Threat Hunting
- 🔑TA0006 : Credential Access
  - Detecting Remote Credentials Dumping via comsvcs.dll
- 🦘TA0008 : Lateral Movement
🔎Misc
- Infosec Game-Sense

Powered by GitBook

c- Event Normalization with ECS

In progress...

Previousb - Event Parsing : From Beats to Logstash Next5. Alerting in ELK

Last updated 2 years ago

On this page