Vendors are offering tools left and right since the Log4J fun ruined most peoples Christmas break. Amongst these Vendors is CrowdStrike......
Log4J – CrowdStrike RTR Script
CrowdStrike – On-Demand Scan v1
One of the downsides to CrowdStrike is no on-demand scanning. On one hand you can see why, on the other, you have use cases that need it.....
CS-MalQuery – Part 2
CrowdStrike logo Github:https://github.com/securethelogs/Powershell/blob/master/CrowdStrike/CS-MalQuery.ps1 Since writing part 1 (Here), I’ve been looking into how to expand on the script. I had a thought... if I’m a user and have gotten to the point I’m running this script, I may need more information than if it's just there. This made me add the Hybrid-Analysis API and Actors... Continue Reading →
Active Directory Scripts
I've created a bunch of Active Directory scripts to help identify attack points or stale accounts. This can be used for both, Blue and Red team members as they dive into abusable privileges....
Hacking With Powershell: Malware
With malicious parties continuing to use Powershell as their way in, I thought I would look into how it's being used and what can be done to prevent it. This is something I've covered before, so think of this as a part 3............
Should We Give Users Local Admin Rights?
A common debate in cyber security is "can a user have admin rights to their machine?" Personally, I've always been on the side of no but recently been I've been torn. Hence why I'm now brain dumping on my blog.....
Meterpreter Basics
Meterpreter is a very powerful payload that can be dropped using an exploit in Metasploit. Once obtained, there is quite a lot that you can do. This is what I’m going to cover below. To find out more about Meterpreter, click the link below. This site also has examples on how to use the modules........
How The Phishers Phish
When thinking of phishing, you might think of ‘Winning the Nigeran lottery’ or ‘Paying a small holding fee so that a prince can make you rich’. These were common attempts back in the day and the aim was to trick you so that you would send the scammer money. Since then, Phisher-men and women have evolved and are now using new techniques. What these people want though are very different things. Nowadays these types of attacks aim to steal personal details, credentials, money or even to infect the users machine......
securethelogs.com 