How to Discover Windows Run Key Persistence When Threat Hunting

Search …

Services
Products
- Insane Forensics Platform
Company
Resources
- Blog
- Tech Talk Tuesday
Login

Your cart is currently empty!

Book A Call

Search …

Services
Products
- Insane Forensics Platform
Company
Resources
- Blog
- Tech Talk Tuesday
Login

Tech Talk Tuesday / Leave a Comment / 1 minute of reading

How to Discover Windows Run Key Persistence When Threat Hunting

Description

Registry run key persistence is a popular technique used by APT37, Dragonfly, APT41 and many other attackers. In this edition of #TechTalkTuesday, we talk through the basics of run key persistence, how groups have used it, and how to look for run key persistence through your threat hunting, cybersecurity, and cyber threat intelligence efforts.

Post navigation

← Previous Post

PutDownYourDukes_HuntingForHackingGroups

Put Down Your Dukes: Hunting For Hacking Group APT 29/APT 37/APT 40’s Covert Data Exfiltration

Tech Talk Tuesday

Threat Hunting for No-Key-Theft-Required Attacks in Trusted Binaries [MITRE ATT&CK T1553.002]

Tech Talk Tuesday

UsingMITRE-ATTACK-ForEnterpriseAndATT_CK-ForICS-InIndustrialEnvironmentspng

Using MITRE ATT&CK for Enterprise and ATT&CK for ICS in Industrial Environments (ft Ron Fabela)

Tech Talk Tuesday

Leave a Comment Cancel Reply

Your email address will not be published. Required fields are marked *

Type here..

Name*

Email*

Website

Save my name, email, and website in this browser for the next time I comment.

How To Use FTK Imager To Take Disk And Memory Images For Free
IR Plan, Policy & Procedures Part 3: How To Write a Cybersecurity Incident Response Procedures
IR Plan, Policy & Procedures Part 2: How To Write a Cybersecurity Incident Response Policy

Be Notified of Future Posts

Share This Post

Contact Us
Blog
Store
My account

Scroll to Top

How to Discover Windows Run Key Persistence When Threat Hunting

Description

Related Posts

Leave a Comment Cancel Reply