tag:blogger.com,1999:blog-6244942915864113008.post6273368021510706030..comments2021-05-24T11:10:43.473-07:00Comments on DFIR and Threat Hunting: Hunting: What does it look like?Unknownnoreply@blogger.comBlogger4125tag:blogger.com,1999:blog-6244942915864113008.post-2009857041745358672017-01-31T09:41:21.689-08:002017-01-31T09:41:21.689-08:00Hey Tom,
Thanks for the comment. Yep, I've p...Hey Tom,<br /><br />Thanks for the comment. Yep, I've posted several hunts there and IIRC you even used one in a presentation of yours. :)Jack Crookhttps://www.blogger.com/profile/12833839809413917819noreply@blogger.comtag:blogger.com,1999:blog-6244942915864113008.post-48796806109939619172017-01-31T06:43:23.469-08:002017-01-31T06:43:23.469-08:00Jack,
> "I would love to hear what others...Jack,<br /><br />> "I would love to hear what others are doing with regards to hunting for and detecting the above"<br /><br />are you familiar with the Threat Hunting Project and its "hunts" repo?<br />http://www.threathunting.net/<br />https://github.com/ThreatHuntingProject/ThreatHunting/tree/master/hunts<br /><br />Cheers,<br />Tom<br />TomUhttps://www.blogger.com/profile/16795133222461988201noreply@blogger.comtag:blogger.com,1999:blog-6244942915864113008.post-71770275710651083562017-01-31T03:09:23.652-08:002017-01-31T03:09:23.652-08:00Sure, it's in the 4th paragraph of the post.Sure, it's in the 4th paragraph of the post.Jack Crookhttps://www.blogger.com/profile/12833839809413917819noreply@blogger.comtag:blogger.com,1999:blog-6244942915864113008.post-37647894597446850962017-01-30T16:16:23.526-08:002017-01-30T16:16:23.526-08:00good stuff, thanks! could you also share the artic...good stuff, thanks! could you also share the article you mention on the first lines ?Anonymousnoreply@blogger.com