-
Gaza-Linked Cyber Threat Actor Targets Israeli Energy and Defense Sectors
A Gaza-based threat actor has been linked to a series of cyber attacks aimed at Israeli private-sector energy, defense, and telecommunications organizations. Microsoft, which revealed details of the activity in its fourth annual Digital Defense Report, is tracking the campaign under the name Storm-1133. “We assess this group works to further the interests of Hamas,…
-
Microsoft Releases October 2023 Patches for 103 Flaws, Including 2 Active Exploits
Microsoft has released its Patch Tuesday updates for October 2023, addressing a total of 103 flaws in its software, two of which have come under active exploitation in the wild. Of the 103 flaws, 13 are rated Critical and 90 are rated Important in severity. This is apart from 18 security vulnerabilities addressed in its…
-
Perform Port Scanning using sx Tool
Perform Port Scanning using sx Tool The sx tool is a command-line network scanner that can be used to perform ARP scans, ICMP scans, TCP SYN scans, UDP scans and application scans such as SOCS5 scans, Docker scans and Elasticsearch scans. In the terminal window, type sx arp [Target subnet] and press Enter (here, the…
-
Perform Port and Service Discovery using NetScanTools Pro
Perform Port and Service Discovery using NetScanTools Pro NetScanTools Pro is an integrated collection of utilities that gathers information on the Internet and troubleshoots networks for Network Professionals. With the available tools, you can research IPv4/IPv6 addresses, hostnames, domain names, e-mail addresses, and URLs on the target network. The Setup – NetScanTools Pro Demo window…
-
Perform Port and Service Discovery using MegaPing
Perform Port and Service Discovery using MegaPing Overview of Port and Service Discovery Port scanning techniques are categorized according to the type of protocol used for communication within the network. Download The MegaPing application install & Launch it and click on I Agree The MegaPing (Unregistered) GUI appears displaying the System Info, as shown in…
-
Perform Host Discovery using Angry IP Scanner
Perform Host Discovery using Angry IP Scanner Angry IP Scanner is an open-source and cross-platform network scanner designed to scan IP addresses as well as ports. It simply pings each IP address to check if it is alive; then, optionally by resolving its hostname, determines the MAC address, scans ports, etc. The amount of gathered…
-
Perform host discovery using Nmap
Perform host discovery using Nmap 1.Perform host discovery using Nmap Nmap is a utility used for network discovery, network administration, and security auditing. It is also used to perform tasks such as network inventory, managing service upgrade schedules, and monitoring host or service uptime. Here, we will use Nmap to discover a list of live…
-
Snort Challenge โ Live Attacks Room
Task 1 Introduction The room invites you to a challenge where you will investigate a series of traffic data and stop malicious activity under two different scenarios. Letโs start working with Snort to analyse live and captured traffic. Before joining this room, we suggest completing the โSnortโ room. Note: There are two VMs attached to this challenge. Each…
-
Sigma
Task 1 Introduction- Introduction Detection engineering is an important role and task for a security analyst. It involves developing processes that will guide you as an analyst to identify threats before they cause any harm to an environment through the use of rules. This room will introduce you to Sigma, an open-source generic signature language…
-
Threat Intelligence for SOC
Task 1ย ย Introduction Is your organisation prepared to handle emerging threats like new malware IOCs or zero days? And in any case, can you determine unknown adversaries or apply known indicators from reliable sources in your Security Operations pipeline? Such questions arise when you think of the ever-going cat-and-mouse game of threat actors and security analysts…