> For the complete documentation index, see [llms.txt](https://www.unh4ck.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://www.unh4ck.com/detection-engineering-and-threat-hunting.md).

# ☢️ DEATH : Detection Engineering And Threat Hunting

- [TA0006 : Credential Access](https://www.unh4ck.com/detection-engineering-and-threat-hunting/ta0006-credential-access.md)
- [Detecting Remote Credentials Dumping via comsvcs.dll](https://www.unh4ck.com/detection-engineering-and-threat-hunting/ta0006-credential-access/detecting-remote-credentials-dumping-via-comsvcs.dll.md): Remote credential dumping via comsvcsc. Showcasing Lsassy 3.0.0 tool for stealthier approches detection.
- [TA0008 : Lateral Movement](https://www.unh4ck.com/detection-engineering-and-threat-hunting/lateral-movement.md)
- [Detecting Lateral Movement via Service Configuration Manager](https://www.unh4ck.com/detection-engineering-and-threat-hunting/lateral-movement/detecting-lateral-movement-via-service-configuration-manager.md): Using Endpoint & Network telemetry to hunt for remote service usage for lateral movement
- [Detecting CONTI CobaltStrike Lateral Movement Techniques - Part 1](https://www.unh4ck.com/detection-engineering-and-threat-hunting/lateral-movement/detecting-conti-cobaltstrike-lateral-movement-techniques-part-1.md): Detection opportunities on lateral movement techniques used by CONTI ransomware group using CobaltStrike.
- [Detecting CONTI CobaltStrike Lateral Movement Techniques - Part 2](https://www.unh4ck.com/detection-engineering-and-threat-hunting/lateral-movement/detecting-conti-cobaltstrike-lateral-movement-techniques-part-2.md): Detection opportunities on lateral movement techniques used by CONTI ransomware group using CobaltStrike.
