ioc[.]one - OSINT Cyber Threat Intelligence Database

Mengoptimalkan Deteksi Ancaman Menggunakan Atomic Red Team dan SIEM Wazuh dengan Sysmon pada…

Tags

attack-pattern:

Data Powershell - T1059.001 Powershell Profile - T1546.013 Powershell Profile - T1504 Server - T1583.004 Server - T1584.004 Powershell - T1086

Show in Graph

Common Information

Type	Value
UUID	f61d1a3c-303b-4c82-b4b2-a5b43dd03914
Fingerprint	9ec900c487baefbb
Analysis status	DONE
Considered CTI value	-2
Text language
Published	Dec. 21, 2024, 5:52 p.m.
Added to db	Dec. 21, 2024, 6:57 p.m.
Last updated	Dec. 22, 2024, 12:40 p.m.
Headline	Mengoptimalkan Deteksi Ancaman Menggunakan Atomic Red Team dan SIEM Wazuh dengan Sysmon pada Windows 10
Title	Mengoptimalkan Deteksi Ancaman Menggunakan Atomic Red Team dan SIEM Wazuh dengan Sysmon pada…
Detected Hints/Tags/Attributes	22/1/15

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@mahesar/mengoptimalkan-deteksi-ancaman-menggunakan-atomic-red-team-dan-siem-wazuh-dengan-sysmon-pada-f798c2fafcba?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	800		www.linkedin.com
Details	Domain	484		medium.com
Details	Domain	4688		github.com
Details	Domain	325		raw.githubusercontent.com
Details	File	18		sysmonconfig.xml
Details	File	28		sysmon64.exe
Details	File	3		install-atomicredteam.ps1
Details	File	1		c:\atomicredteam\invoke-atomicredteam\invoke-atomicredteam.psd
Details	Github username	19		redcanaryco
Details	Url	2		https://www.linkedin.com/in/mahesar
Details	Url	282		https://medium.com
Details	Url	2		https://github.com/redcanaryco/atomic-red-team
Details	Url	1		https://github.com/redcanaryco/invoke-atomicredteam/wiki/installing-invoke-atomicredteam
Details	Url	1		https://wazuh.com/resources/blog/emulation-of-attack-techniques-and-detection-with-wazuh/sysmonconfig.xml
Details	Url	3		https://raw.githubusercontent.com/redcanaryco/invoke-atomicredteam/master/install-atomicredteam.ps1