Tag: security

• Endpoint Visibility: Azure Functions

  Most of our endpoint management has now shifted to the cloud. With this often comes easy and great API access. Having this API access can really help you automate tedious tasks or increase your visibility. If you manage multiple agents on your endpoints, you often have teams managing at the source. You may also have…

  Securethelogs

  17th Jun 2022

  Blue Team, Cyber Security

  security

• Log4J – CrowdStrike RTR Script

  Vendors are offering tools left and right since the Log4J fun ruined most peoples Christmas break. Amongst these Vendors is CrowdStrike……

  Securethelogs

  29th Dec 2021

  Blue Team, Cyber Security

  api, cast, cast.exe, crowdstrike, cs, log4j, powershell, rtr, security

• CrowdStrike – On-Demand Scan v1

  One of the downsides to CrowdStrike is no on-demand scanning. On one hand you can see why, on the other, you have use cases that need it…..

  Securethelogs

  29th Nov 2021

  Blue Team, Cyber Security

  api, crowdstrike, edr, malware, powershell, sandbox, script, security, tech

• CS-MalQuery – Part 2

  Github:https://github.com/securethelogs/Powershell/blob/master/CrowdStrike/CS-MalQuery.ps1 Since writing part 1 (Here), I’ve been looking into how to expand on the script. I had a thought… if I’m a user and have gotten to the point I’m running this script, I may need more information than if it’s just there. This made me add the Hybrid-Analysis API and Actors API from…

  Securethelogs

  12th Nov 2021

  Blue Team, Cyber Security

  api, crowdstrike, hacking, powershell, psfalcon, security

• Active Directory Scripts

  I’ve created a bunch of Active Directory scripts to help identify attack points or stale accounts. This can be used for both, Blue and Red team members as they dive into abusable privileges….

  Securethelogs

  6th Jun 2020

  Blue Team

  active directory, ad, attack, powershell, scripts, security