As you know, docking services are booming, docking container attacks are also on the rise. But this post will illustrate how the intruder is trying
In our previous article, we have covered with Splunk master server setup with a brief demonstration of Dashboard setup or Log monitoring you can visit
Have you ever heard about your critical data being exported somewhere else without your knowledge? Data exfiltration is a method of breaching the security and
A user when authenticates a Windows endpoint, then an Account Logon event will be generated and will be recorded. These account logon events will be
A velociraptor is a tool for collecting host-based state information using Velocidex Query Language (VQL) queries. To learn more about Velociraptor, read the documentation on
For a system to perform well and ensure its maintenance, it is extremely important to monitor and manage events on a system. Event Logs are
For a system to perform well and ensure its maintenance, it is extremely important to monitor and manage events on a system. Event Logs are
Alternate Data Stream is an artifact of New Technology File system (NTFS) which was introduced by Windows. It was traditionally introduced so that it could
Splunk Inc. is an American public multinational corporation based in San Francisco, California, that produces software for searching, monitoring, and analyzing machine-generated big data via a Web-style interface. Splunk (the product) captures,