Windows security investigation analyzing failed authentication attempts using Event Viewer and Event ID 4625.
Network traffic investigation using Wireshark to analyze HTTP traffic and identify network communication patterns.
Investigated suspicious Microsoft 365 sign in activity using portal triage, containment actions like session revocation and stronger authentication, then validated remediation and practiced structured KQL hunting patterns with Azure Monitor Logs demo data.
Network traffic investigation using Wireshark to analyze DNS, TCP, TLS and HTTP traffic.
EXOBIA est un artefact cognitif conçu pour détourner l’attention défensive sans jamais attaquer. Il n’exploite rien, ne persiste pas, ne compromet pas. Il teste une chose unique : la capacité d’un SOC à rester lucide face à l’incompréhensible.
Add a description, image, and links to the soc-analysis topic page so that developers can more easily learn about it.
To associate your repository with the soc-analysis topic, visit your repo's landing page and select "manage topics."