Skip to content

About Me
- About
Hobbies
Helpful Resources
Site Stats
Search for:

"Bytes of helpful information"

"You can't get infected if you can't get connected."

Posted on 19 May 2020

Threat investigation quick reference chart

When conducting a threat investigation, I have a quick reference chart that I keep stored between my ears. The problem is that location isn’t helpful to those I work with or assist. I put together a documented quick reference with my common go-to tools based on the SANS PICERL approach.

In case you are interested, here is what I normally think about when investigating an incident or actor. Hope it helps!

Threat investigation.PDF

MD5: 88d869978eae6cd5946e5484f4ec0256

Virus Total scan: https://www.virustotal.com/gui/file/e5b796db82ca3314873e6594ab34948a08a459901a0c9ee8de003af48c6b44ee/details

Share this:

Click to share on Facebook (Opens in new window)
Click to share on LinkedIn (Opens in new window)
Click to share on Reddit (Opens in new window)
Click to share on Twitter (Opens in new window)
Click to share on Tumblr (Opens in new window)
Click to share on Pinterest (Opens in new window)
Click to share on Telegram (Opens in new window)
Click to share on WhatsApp (Opens in new window)
Click to print (Opens in new window)

Like this:

Like Loading...

Check out these related posts

Categories Cyber SecurityTags Cyber Security, Investigation, Malware, Threat Actor, Threat HuntingLeave a comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Comment *

Name *

Email *

Website

Upload attachment (Allowed file types: jpg, gif, png, maximum file size: 2MB.

Notify me of follow-up comments by email.

Notify me of new posts by email.

Δ

Post navigation

Previous Previous post: INFOSEC: don’t skip the basics for a six-figure “solution” – BEC & phishing

Next Next post: Troubleshooting MS Teams video connectivity with Untangle Firewall

Menu

About Me
- About
Hobbies
Helpful Resources
Site Stats
Search for:

Tags

24BH (8) Amateur Radio (9) Apache2 (11) AT&T (5) Camping (9) Cloudflare (11) cloudflare-nginx (7) Content-Security-Policy (7) Content-Type (7) DMARC (7) dnsviz.net (6) Expect-CT (7) FTP (5) GoOutdoors (6) HAM (9) Ham Radio (8) Hardenize (7) Hardenize.com (7) HTTP/1.1 (7) IVoidWarranties (7) Jayco (10) jaycoowners.com (9) Jay Feather (9) Jay Feather 24BH (7) MakeItYourOwn (7) multi-part-security-series (7) OpenSPOT (7) Referrer-Policy (7) Security (12) SharkRF (7) SMTP (5) SSLlabs.com (5) Strict-Transport-Security (7) Travel Trailer (8) Ubuntu (13) Untangle (5) VMware (5) VoIP (7) Weather (5) Weather Camera (5) Weather Underground (5) Wordpress (14) X-Content-Type-Options (7) X-Frame-Options (7) X-XSS-Protection (7)

Blog Stats

294,090 visitors

Categories

Aircraft (5)
Automotive (8)
Camping (14)
Hiking (6)
Rambling (14)
Technology (101)
- Amateur Radio (12)
- Apple Watch (1)
- Cyber Security (34)
- Email (4)
- Gaming (1)
- Gmail (1)
- iPhone (4)
- Servers (40)
- Untangle (4)
- Wordpress (7)
Weather (9)

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Email Address

Join 12 other subscribers

This work is licensed under a Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0).

Last time I checked this site had an "A+" Qualys rating!

Did you find this site to be helpful? Consider tossing a cup of coffee this way.

%d