OSTechNix

Nmap Commands Explained: The Complete Guide to Network Scanning

Learn essential Nmap commands for network scanning, port discovery, and OS detection. Complete guide with examples and a ...
LinkedIn

SOC Analyst Roadmap 2026: Your Complete Career Guide to Breaking Into Cybersecurity

Becoming a SOC analyst in 2026 requires mastering networking fundamentals, security tools (SIEM, EDR, IDS/IPS), threat analysis, and incident response. This roadmap covers the exact skills, ...
LinkedIn

Looking for COM Hijacking with Splunk and Sysmon

I will admit there wasn't much I could do to make this a prettier title. Today's content might be niche; it has involved me using Splunk (which I am still relatively new to) and is actually a ...
Scientific Research Publishing

Independent Study of Splunk ()

The paper’s objective is to easily search data and integrate all data sources or tools into one place for people to identify issues in visualizable ways based on correlating multiple data sources. On ...
Microsoft

New Microsoft Sysmon report in VirusTotal improves security

Today, following the 25th year anniversary of Microsoft Sysinternals, we are announcing the general availability of a new Microsoft Sysmon report in VirusTotal. Whether you’re an IT professional or a ...
GitHub

powershell_4104_hunting.yml

description: The following analytic identifies suspicious PowerShell execution using Script Block Logging (EventCode 4104). It leverages specific patterns and keywords within the ScriptBlockText field ...
GitHub

Splunk 101.md

Typically when people think of a SIEM Security Information and Event Management system that is used to aggregate security information in the form of logs, alerts, artifacts and events into a ...