Effective Threat Investigation for SOC Analysts Cover

Effective Threat Investigation for SOC Analysts

The ultimate guide to examining various threats and attacker techniques using security logs

Publisher:Packt Publishing Limited

By: Mostafa Yahia

Paid access

|May 2024

E-Book €32.99Institutions €135.95

E-Book €32.99Institutions €135.95

Table of Contents

Investigating Email Threats
Email Flow and Header Analysis
Introduction to Windows Event Logs
Tracking Accounts Login and Management
Investigating Suspicious Process Execution Using Windows Event Logs
Investigating PowerShell Event Logs
Investigating Persistence and Lateral Movement Using Windows Event Logs
Network Firewall Logs Analysis
Investigating Cyber Threats by Using the Firewall Logs
Web Proxy Logs Analysis
Investigating Suspicious Outbound Communications (C&C Communications) by Using Proxy Logs
Investigating External Threats
Investigating Network Flows and Security Solutions Alerts
Threat Intelligence in a SOC Analyst's Day
Malware Sandboxing – Building a Malware Sandbox

PDF ISBN: 978-1-83763-875-8

Publisher: Packt Publishing Limited

Copyright owner: © 2023 Packt Publishing Limited

Publication date: 2024

Language: English

Pages: 314

Related subjects:

Computer sciences,

Computer sciences, other

People also read

SOC Analyst Career Guide

SOC Analyst Career Guide

Practical Cyber Threat Intelligence

.blurhash-client-img { display: none !important; }

Practical Cyber Threat Intelligence

Dr. Erdal Ozkaya

Incident Response for Windows

.blurhash-client-img { display: none !important; }

Incident Response for Windows

Anatoly Tykushin, Svetlana Ostrovskaya, Dmitry Volkov

Cybersecurity - Attack and Defense Strategies

.blurhash-client-img { display: none !important; }

Cybersecurity - Attack and Defense Strategies

Yuri Diogenes, Dr. Erdal Ozkaya

Advanced Malware Analysis and Intelligence

.blurhash-client-img { display: none !important; }

Advanced Malware Analysis and Intelligence

Mahadev Thukaram, Dharmendra T.

Malware Analysis Techniques

.blurhash-client-img { display: none !important; }

Malware Analysis Techniques

Incident Response with Threat Intelligence

.blurhash-client-img { display: none !important; }

Incident Response with Threat Intelligence

Roberto Martinez

Digital Forensics and Incident Response

.blurhash-client-img { display: none !important; }

Digital Forensics and Incident Response

Gerard Johansen

Practical Threat Intelligence and Data-Driven Threat Hunting

.blurhash-client-img { display: none !important; }

Practical Threat Intelligence and Data-Driven Threat Hunting

Valentina Costa-Gazcón

Cybersecurity – Attack and Defense Strategies, 3rd edition

.blurhash-client-img { display: none !important; }

Cybersecurity – Attack and Defense Strategies, 3rd edition

Yuri Diogenes, Dr. Erdal Ozkaya