Domiziana FotiLetsDefend- SOC142 — Multiple HTTP 500 ResponseIn this alert we have a problem related to the HTTP response status.4 min read·Apr 19, 2023--1--1
Domiziana FotiUnpacking the Power of Intelligence-Driven Incident Response: Lessons from Scott J.What is the book about?3 min read·Feb 28, 2023----
Domiziana FotiLetsDefend-SOC163 — Suspicious Certutil.exe UsageCertutil.exe is a command-line program intended by Microsoft used to dump and view certificate authority (CA) configuration information…4 min read·Jan 17, 2023----
Domiziana FotiATT&CK for Cyber Threat Intelligence Training — Module 3: Mapping to ATT&CK from raw dataIn this course we have the opportunity not only to study what ATT&CK is but also to test ourselves through practical exercises.8 min read·Dec 13, 2022----
Domiziana FotiLetsDefend- SOC112 — Traffic to Blacklisted IPIP blacklisting is a technique for preventing fraudulent or unauthorized IP addresses from connecting to your networks. Blacklists are…3 min read·Nov 23, 2022----
Domiziana FotiLetsDefend- SOC 175- PowerShell Found in Requested URL-Microsoft Exchange Server…In early August, the GTSC SOC team (Vietnamese company) discovered two new vulnerabilities that were reported to the Zero-day Initiative…4 min read·Oct 18, 2022----
Domiziana FotiSOC167 — LS Command Detected in Requested URL — Letsdefend.ioIn this case we have a suspected web attack, the information available for our analysis is outlined below:3 min read·Oct 1, 2022----
Domiziana FotiBrowser fingerprinting and “Cover Your Tracks” ProjectWhat is Browser fingerprinting?4 min read·Sep 3, 2022----
Domiziana FotiMetasploit: Exploitation Walkthrough TryHackMeThe Metasploit Project is a computer security initiative that aids penetration testing and gives information on security flaws.7 min read·Aug 4, 2022----
Domiziana FotiWireshark 101 — TryHackMe WalktroughTryhackMe is an amazing platform that teaches cybersecurity through specific rooms and hands-on exercises. Interesting courses for pen…8 min read·Jul 9, 2022----