Posts

  • Windows Logon Types

    Windows Logon Types

    Type Name Scenario & Description Investigator Note 0 System Used only by the System account during startup. You generally ignore this unless investigating boot-level persistence. 2 Interactive A user logging…

  • A Glossary of Terms : Attacks

    A Glossary of Terms : Attacks

    A Quick Glossary of Attack Types

  • A Glossary of Terms : DFIR

    A Glossary of Terms : DFIR

    This table holds a glossary of Terminology linked to DF, IR and DFIR activities.

  • CMD to PowerShell Ref

    CMD to PowerShell Ref

    Hey! Hey, do you want a quick ref that transfers your CMD line knowledge to Powershell Well here it is! CMD PowerShell What is it? wevutil get-winevent Events !! Filter…

  • DNS Dig, Eyewitness & File Uploads

    DNS Dig, Eyewitness & File Uploads

    What I Learned from a Hack the Box Lab. While exploring a recent intermediate Hack The Box (HTB) lab, I spent some time sharpening my approach to web-focused enumeration and…

  • THM Write-Up : Summit

    THM Write-Up : Summit

    Back to it! Ok so in Summit you are playing the role of an analyst, you need to investigate a variety of system information to identify the threats presented during…