Understanding Windows Core Processes For Cyber Security Analysts | TryHackMe

Поделиться
HTML-код
  • Опубликовано: 20 авг 2024
  • In this video walkthrough, we covered windows core processes and demonstrated what is a normal behaviour for a windows process to easily spot malwares
    #windows
    #tryhackme
    ----
    Patreon
    www.patreon.co...
    Backup channel
    / @karppiandspecter-tvshows
    My Movie channel:
    / @motasemhamdanhacknotes
    ------------
    Receive video documentation
    / @motasemhamdan
    ----
    Do you need private cybersecurity training? sign up here
    motasem-notes....
    --
    Twitter
    / manmotasem
    LinkedIn
    / motasem-hamdan-7673289b
    Instagram
    / mo.vultu
    Facebook
    / motasemhamdantty

Комментарии • 13

  • @memepasmal77
    @memepasmal77 3 месяца назад +1

    Thank you for the great job.

  • @manafhousin9973
    @manafhousin9973 6 месяцев назад +1

    Thank you MAN!

  • @abdullahb.9746
    @abdullahb.9746 Год назад +1

    thank you bro

  • @alisahin3166
    @alisahin3166 Год назад +1

    Why is it stating, that the parent of csrss.exe and wininnit.exe is a "non-existent process", while smss.exe is existing? Can some please explain?

    • @cur53d34
      @cur53d34 Год назад +1

      from what i understood, smss.exe exists just for some time, does what it should do, then terminates itself, and I guess by the time the child processes are called, smss.exe have already terminated itself. You can see that in Task 4 in the appropriate room in THM

    • @alisahin3166
      @alisahin3166 Год назад

      @@cur53d34 Yea, that was also my understanding at that time. But actually there are 3 smss processes - 1 master smss process, which does not terminate itself and then two temporary "child" processes of smss, that are also called smss (but differentiated in session 0 & 1), which terminate themselfes after creating their child processes, which I mentioned in my first post.
      Edit: Here is a good explanation: ruclips.net/video/pmy2_tCT6Sk/видео.html

  • @ronakrawal8325
    @ronakrawal8325 3 года назад +2

    I have a question. can we sniff phone calls and SMS if yes then how?

    • @islandpenguin5056
      @islandpenguin5056 3 года назад +8

      How big is your nose?

    • @faizanarif2610
      @faizanarif2610 3 года назад +3

      First you buy Hardware and Install Scripts into it, With these functionality VLH/MSC (Visitor Location Register/ Mobile Switching Center) In Simple words you would Create A complete Mobile Tower with all the functionality in it Just small in size. You should be in close range with your experiment subject (range depend on how expensive can you get). Once you have all the details on the screen. Grab Blank SIM and put it in SIM Card Reader. that's ALL. Its worth the shot if you'd also prepare yourself for jail food.

    • @itsm3dud39
      @itsm3dud39 2 года назад

      @@faizanarif2610 if you can hack the particular company then no need of making tower

    • @Aresindian
      @Aresindian Год назад

      @@faizanarif2610 you can tap voice over internet protocol

  • @babayaga8663
    @babayaga8663 Год назад

    what if command line is N/A

Следующие
Автовоспроизведение
Event Log Management in Windows | TryHackMe Windows Event Logs1:02:54Event Log Management in Windows | TryHackMe Windows Event Logs
Event Log Management in Windows | TryHackMe Windows Event LogsMotasem Hamdan
Просмотров 23 тыс.
Try Hack Me: Sysinternals36:26Try Hack Me: Sysinternals
Try Hack Me: Sysinternalsstuffy24
Просмотров 4,2 тыс.
Windows 10 Core Process explained [windows process tree / parent child relationship / genealogy]21:18Windows 10 Core Process explained [windows process tree / parent child relationship / genealogy]
Windows 10 Core Process explained [windows process tree / parent child relationship / genealogy]Cyber Pro
Просмотров 7 тыс.
I LINKED UP WITH MY EX AFTER 3 YEARS.....😱13:20I LINKED UP WITH MY EX AFTER 3 YEARS.....😱
I LINKED UP WITH MY EX AFTER 3 YEARS.....😱BadKidMacei
Просмотров 298 тыс.
Madden NFL 25 is NOT GOOD - Review43:13Madden NFL 25 is NOT GOOD - Review
Madden NFL 25 is NOT GOOD - ReviewSOFTDRINKTV
Просмотров 270 тыс.
What The Avengers do when it's not their movie02:50What The Avengers do when it's not their movie
What The Avengers do when it's not their movieTra Rags
Просмотров 256 тыс.
NASCAR Official Extended Highlights: Wild wrecks and 2 overtimes at Michigan International Speedway15:29NASCAR Official Extended Highlights: Wild wrecks and 2 overtimes at Michigan International Speedway
NASCAR Official Extended Highlights: Wild wrecks and 2 overtimes at Michigan International SpeedwayNASCAR
Просмотров 151 тыс.
Understainding Windows OS Processes and Internals | TryHackMe Internals24:20Understainding Windows OS Processes and Internals | TryHackMe Internals
Understainding Windows OS Processes and Internals | TryHackMe InternalsMotasem Hamdan
Просмотров 1,4 тыс.
Dynamic Malware Analysis30:12Dynamic Malware Analysis
Dynamic Malware AnalysisLetsDefend
Просмотров 22 тыс.
Wireshark Basics | Complete Guide | TryHackMe Wireshark The Basics & Packet Operations1:17:13Wireshark Basics | Complete Guide | TryHackMe Wireshark The Basics & Packet Operations
Wireshark Basics | Complete Guide | TryHackMe Wireshark The Basics & Packet OperationsMotasem Hamdan
Просмотров 2,7 тыс.
Try Hack Me: Core Windows Processes32:15Try Hack Me: Core Windows Processes
Try Hack Me: Core Windows Processesstuffy24
Просмотров 2,9 тыс.
Linux Forensics Investigation | TryHackMe Linux Forensics28:18Linux Forensics Investigation | TryHackMe Linux Forensics
Linux Forensics Investigation | TryHackMe Linux ForensicsMotasem Hamdan
Просмотров 8 тыс.
Hacking Windows TrustedInstaller (GOD MODE)31:07Hacking Windows TrustedInstaller (GOD MODE)
Hacking Windows TrustedInstaller (GOD MODE)John Hammond
Просмотров 540 тыс.
Detect Hackers & Malware on your Computer (literally for free)16:38Detect Hackers & Malware on your Computer (literally for free)
Detect Hackers & Malware on your Computer (literally for free)John Hammond
Просмотров 301 тыс.
Cyber Threat Intelligence Platforms | OpenCTI | TryHackMe23:09Cyber Threat Intelligence Platforms | OpenCTI | TryHackMe
Cyber Threat Intelligence Platforms | OpenCTI | TryHackMeMotasem Hamdan
Просмотров 4,2 тыс.
a Hacker's Backdoor: Service Control Manager17:49a Hacker's Backdoor: Service Control Manager
a Hacker's Backdoor: Service Control ManagerJohn Hammond
Просмотров 92 тыс.
Zombie Boy Saved My Life 💚00:29Zombie Boy Saved My Life 💚
Zombie Boy Saved My Life 💚Alan Chikin Chow
Просмотров 6 млн
За сколько бы согласились на такую работу?00:49За сколько бы согласились на такую работу?
За сколько бы согласились на такую работу?Mikhail Boldurev
Просмотров 447 тыс.
Арестович: Военный размен: Покровск или Курск? Сбор для военных👇1:57:55Арестович: Военный размен: Покровск или Курск? Сбор для военных👇
Арестович: Военный размен: Покровск или Курск? Сбор для военных👇Alexey Arestovych
Просмотров 724 тыс.
Как Лукашенко воспринял вторжение ВСУ в Курскую область? #лукашенко #новости #политика #интервью00:27Как Лукашенко воспринял вторжение ВСУ в Курскую область? #лукашенко #новости #политика #интервью
Как Лукашенко воспринял вторжение ВСУ в Курскую область? #лукашенко #новости #политика #интервьюCTVBY
Просмотров 954 тыс.
SHIRT NUMBER OR SWIM 🙈💦00:32SHIRT NUMBER OR SWIM 🙈💦
SHIRT NUMBER OR SWIM 🙈💦Celine Dept
Просмотров 2,6 млн
МАТИЗ 200 СИЛ. МЫ БОРОЛИСЬ ДО КОНЦА, НО....48:57МАТИЗ 200 СИЛ. МЫ БОРОЛИСЬ ДО КОНЦА, НО....
МАТИЗ 200 СИЛ. МЫ БОРОЛИСЬ ДО КОНЦА, НО....AcademeG
Просмотров 927 тыс.
Ik Heb Aardbeien Gemaakt Van Kip🍓🐔😋00:41Ik Heb Aardbeien Gemaakt Van Kip🍓🐔😋
Ik Heb Aardbeien Gemaakt Van Kip🍓🐔😋Cool Tool SHORTS Netherlands
Просмотров 5 млн
Куда мы улетели всей семьей и с малышом? Виктория Ким00:28Куда мы улетели всей семьей и с малышом? Виктория Ким
Куда мы улетели всей семьей и с малышом? Виктория КимВиктория Ким
Просмотров 58 тыс.