Threat Hunting for APT34/APT39/Generic Reconnaissance (T1595.001) and Discovery (T1046) Behaviors

Search …

Platform
Services
Company
Resources
Login

Your cart is currently empty!

Book A Demo

Search …

Platform
Services
Company
Resources
Login

Tech Talk Tuesday / Leave a Comment / 1 minute of reading

Threat Hunting for APT34/APT39/Generic Reconnaissance (T1595.001) and Discovery (T1046) Behaviors

Description

Let’s talk network recon (ATT&CK ID T1695.001) and discovery (ATT&CK ID T1046)! This week we dive into some of the obvious atomic indicators and talk about behavioral indicators associated with APT34, APT39, and generic approaches. We also talk about how attackers might evade IDS/IPS/detection signatures and how you can deal with this during your threat hunting efforts.

Post navigation

← Previous Post

PutDownYourDukes_HuntingForHackingGroups

Put Down Your Dukes: Hunting For Hacking Group APT 29/APT 37/APT 40’s Covert Data Exfiltration

Tech Talk Tuesday

Threat Hunting for No-Key-Theft-Required Attacks in Trusted Binaries [MITRE ATT&CK T1553.002]

Tech Talk Tuesday

UsingMITRE-ATTACK-ForEnterpriseAndATT_CK-ForICS-InIndustrialEnvironmentspng

Using MITRE ATT&CK for Enterprise and ATT&CK for ICS in Industrial Environments (ft Ron Fabela)

Tech Talk Tuesday

Leave a Comment Cancel Reply

Your email address will not be published. Required fields are marked *

Type here..

Name*

Email*

Website

Save my name, email, and website in this browser for the next time I comment.

How To Use FTK Imager To Take Disk And Memory Images For Free
IR Plan, Policy & Procedures Part 3: How To Write a Cybersecurity Incident Response Procedures
IR Plan, Policy & Procedures Part 2: How To Write a Cybersecurity Incident Response Policy

Be Notified of Future Posts

Share This Post

Contact Us
Blog
Store
My account

Scroll to Top

Threat Hunting for APT34/APT39/Generic Reconnaissance (T1595.001) and Discovery (T1046) Behaviors

Description

Related Posts

Leave a Comment Cancel Reply