Part 3: Intro to threat hunting – Hunting the imposter among us with the Elastic stack and Sysmon

This blog post series is for anyone who has ever had an interest in threat hunting but did not have the knowledge of how or where to start, what tools they need, or what to hunt for. In this blog post, I will introduce an informal threat hunting process by hunting the APT-style attack performed during […]

Article Link: Part 3: Intro to threat hunting – Hunting the imposter among us with the Elastic stack and Sysmon | HoldMyBeer