Explorer's | Learn IR/Cyber Sec

Sep 23, 20244 min read

Incident Response for Linux: Challenges and Strategies

Linux, often referred to as "just the kernel," forms the foundation for a wide range of operating systems that power much of today’s...

38 views0 comments

Sep 20, 20249 min read

Navigating Velociraptor: A Step-by-Step Guide

Velociraptor is an incredibly powerful tool for endpoint visibility and digital forensics. In this guide, we’ll dive deep into the...

169 views0 comments

Sep 20, 20245 min read

Setting Up Velociraptor for Forensic Analysis in a Home Lab

Velociraptor is a powerful tool for incident response and digital forensics, capable of collecting and analyzing data from multiple...

165 views0 comments

Sep 20, 20244 min read

Exploring Velociraptor: A Versatile Tool for Incident Response and Digital Forensics

In the world of cybersecurity and incident response, having a versatile, powerful tool can make all the difference. Velociraptor is one...

132 views0 comments

Sep 19, 20243 min read

Power of Cyber Deception: Advanced Techniques for Thwarting Attackers

In the ever-evolving landscape of cybersecurity, defenders need to stay a step ahead of attackers. One of the most effective ways to do...

25 views0 comments

Sep 18, 20243 min read

Real Difference Between Containment and Remediation in Cybersecurity Incidents

In the world of cybersecurity, the terms "containment" and "remediation" are often used interchangeably. However, they serve distinct and...

25 views0 comments

Sep 16, 20242 min read

Uncovering Autostart Locations in Windows

Introduction Everyone knows about common autostart locations like Run , RunOnce , scheduled tasks, and services . But did you know...

114 views0 comments

Sep 16, 20242 min read

Understanding Windows Registry Control Sets: ControlSet001, ControlSet002, and CurrentControlSet

Have you ever wondered what ControlSet001, ControlSet002, and CurrentControlSet are in your Windows registry? These terms might sound...

142 views0 comments

Sep 13, 20242 min read

Automating Registry Analysis with RECmd

In the world of digital forensics, registry analysis is a crucial task. Today, we’ll dive into RECmd, a powerful command-line tool...

75 views0 comments

Sep 11, 20244 min read

Aurora Incident Response: A Powerful Open-Source Tool for Investigators

In the realm of incident response (IR), managing investigations can often be a daunting task, especially for new analysts trying to keep...

75 views0 comments

Sep 10, 20243 min read

The Rise of the Bots in Cybersecurity

In the ever-evolving world of cybersecurity, bots have emerged as a significant threat, capable of causing widespread disruption and...

14 views0 comments

Sep 9, 20242 min read

Worms and Bots: What Should You Take Away?

Key Points for Effective Defense Rapid Response Capability Preauthorized Permissions : Ensure you have preapproval to act swiftly during...

16 views0 comments

Sep 8, 20243 min read

The Evolution and Impact of Worms in Cybersecurity

In the world of cybersecurity, attackers are always looking for ways to compromise systems efficiently and effectively. One method that...

23 views0 comments

Sep 7, 20242 min read

Evolution of UNIX and Linux Password Storage

In the early days of UNIX and Linux systems, passwords were stored using the DES encryption algorithm, often without the use of a salt....

16 views0 comments

Sep 5, 20242 min read

Obtaining Windows Domain Controller Hashes

Gaining access to Windows Domain Controller password hashes is a critical step for attackers aiming to compromise a Windows network. Step...

39 views0 comments

Sep 3, 20243 min read

Forensic Investigation: Techniques and Tools for Effective Threat Hunting

In the ever-evolving landscape of cybersecurity, forensic investigators must be equipped with a diverse set of tools and techniques to...

49 views0 comments

Sep 2, 20244 min read

What to Do After a Ransomware Attack

Ransomware attacks are among the most devastating incidents an organization can face. They can cripple your operations, lead to...

36 views0 comments

Aug 31, 20245 min read

Final Phase of a Ransomware Attack: Impact and Recovery Challenges

Ransomware attacks have become increasingly sophisticated, and the “Impact” phase represents the final, most destructive part of the...

33 views0 comments

Aug 30, 20244 min read

Mastering Threat Detection/Hunting with Specific Queries

When it comes to detecting malicious activity and potential security threats, analyzing the right data sources is crucial. Whether you...

114 views0 comments

Aug 28, 20246 min read

Ransomware Actors Access and Stage Data for Exfiltration

Ransomware attacks continue to evolve, with actors using advanced tactics to access and exfiltrate sensitive data. Understanding their...

51 views0 comments