Going from IOCs to Behaviors: Threat Hunting for the Actor Behind CYBERCOM's Recent Ukraine Report

Search …

Services
Products
- Insane Forensics Platform
Company
Resources
- Blog
- Tech Talk Tuesday
Login

Your cart is currently empty!

Book A Call

Search …

Services
Products
- Insane Forensics Platform
Company
Resources
- Blog
- Tech Talk Tuesday
Login

Tech Talk Tuesday / Leave a Comment / 1 minute of reading

Going from IOCs to Behaviors: Threat Hunting for the Actor Behind CYBERCOM’s Recent Ukraine Report

Description

CYBERCOM recently released a report with indicators of compromise (IOCs) from compromised Ukrainian networks. While IOCs are a great way to find very specific parts of an attack, we explore how to instead look for potential behaviors related to the provided IOCs when threat hunting.

Post navigation

← Previous Post

PutDownYourDukes_HuntingForHackingGroups

Put Down Your Dukes: Hunting For Hacking Group APT 29/APT 37/APT 40’s Covert Data Exfiltration

Tech Talk Tuesday

Threat Hunting for No-Key-Theft-Required Attacks in Trusted Binaries [MITRE ATT&CK T1553.002]

Tech Talk Tuesday

UsingMITRE-ATTACK-ForEnterpriseAndATT_CK-ForICS-InIndustrialEnvironmentspng

Using MITRE ATT&CK for Enterprise and ATT&CK for ICS in Industrial Environments (ft Ron Fabela)

Tech Talk Tuesday

Leave a Comment Cancel Reply

Your email address will not be published. Required fields are marked *

Type here..

Name*

Email*

Website

Save my name, email, and website in this browser for the next time I comment.

How To Use FTK Imager To Take Disk And Memory Images For Free
IR Plan, Policy & Procedures Part 3: How To Write a Cybersecurity Incident Response Procedures
IR Plan, Policy & Procedures Part 2: How To Write a Cybersecurity Incident Response Policy

Be Notified of Future Posts

Share This Post

Contact Us
Blog
Store
My account

Scroll to Top

Going from IOCs to Behaviors: Threat Hunting for the Actor Behind CYBERCOM’s Recent Ukraine Report

Description

Related Posts

Leave a Comment Cancel Reply