# ☢️ DEATH : Detection Engineering And Threat Hunting

- [TA0006 : Credential Access](/detection-engineering-and-threat-hunting/ta0006-credential-access.md)
- [Detecting Remote Credentials Dumping via comsvcs.dll](/detection-engineering-and-threat-hunting/ta0006-credential-access/detecting-remote-credentials-dumping-via-comsvcs.dll.md): Remote credential dumping via comsvcsc. Showcasing Lsassy 3.0.0 tool for stealthier approches detection.
- [TA0008 : Lateral Movement](/detection-engineering-and-threat-hunting/lateral-movement.md)
- [Detecting Lateral Movement via Service Configuration Manager](/detection-engineering-and-threat-hunting/lateral-movement/detecting-lateral-movement-via-service-configuration-manager.md): Using Endpoint & Network telemetry to hunt for remote service usage for lateral movement
- [Detecting CONTI CobaltStrike Lateral Movement Techniques - Part 1](/detection-engineering-and-threat-hunting/lateral-movement/detecting-conti-cobaltstrike-lateral-movement-techniques-part-1.md): Detection opportunities on lateral movement techniques used by CONTI ransomware group using CobaltStrike.
- [Detecting CONTI CobaltStrike Lateral Movement Techniques - Part 2](/detection-engineering-and-threat-hunting/lateral-movement/detecting-conti-cobaltstrike-lateral-movement-techniques-part-2.md): Detection opportunities on lateral movement techniques used by CONTI ransomware group using CobaltStrike.