Investigating Conti Ransomware on Microsoft Exchange with Splunk | TryHackMe

Поделиться
HTML-код
  • Опубликовано: 8 янв 2022
  • In this video walk-through, we investigated the Conti ransomware that hit Microsoft Exchange via a series of vulnerabilities. We used lab material from TryHackMe Conti room.
    *******************
    Written Walk-Through
    motasem-notes.net/investigati...
    *****************
    Receive Cyber Security Field Notes and Special Training Videos
    / @motasemhamdan
    ******
    Want to learn web application penetration testing? Enroll in My Udemy Course
    www.udemy.com/course/the-comp...
    **********
    Room Link
    tryhackme.com/room/investigat...
    *********
    Patreon
    www.patreon.com/motasemhamdan...
    Backup channel
    / @hacknotesbackup
    My Movie channel:
    / @motasemhamdanhacknotes
    ******

Комментарии • 13

  • @MotasemHamdan
    @MotasemHamdan  2 года назад +3

    Answer to the last question
    CVE-2020-0796,CVE-2018-13374, CVE-2018-13379
    Shoutout to @clarksoft
    ruclips.net/channel/UCgBIrFuaF1e45VMzvl_3d9g

    • @ian230187
      @ian230187 2 года назад

      How did you manage to track the exact CVE'?

  • @FaLkraydz
    @FaLkraydz 5 месяцев назад

    Now I know the importance of understanding Windows Processes, Logs, and the Interesting Fields. It was a tough one for me and I only solved it with your help, but I made sure I understood the reasons why you made each decision. Thank you so much.

  • @Kettz
    @Kettz 2 года назад +1

    Great video man. It was very helpful. I am learning Splunk and this is a perfect walkthrough.

  • @abdalrahmanseyam1668
    @abdalrahmanseyam1668 2 года назад

    Your videos are helping me through university. Thank you soo much

  • @xoreaxeax2885
    @xoreaxeax2885 2 года назад +1

    Good explanation, thankyou

  • @gp6723
    @gp6723 2 года назад

    Very helpful, this was my first experience with Splunk

  • @amiliyaemi2628
    @amiliyaemi2628 2 года назад +1

    Sir,could you please help me to solve out(Protocols and Servers 2)room of Jr Penetration Tester.

    • @MotasemHamdan
      @MotasemHamdan  2 года назад +3

      Hello Amiliya, I will publish a walkthrough on that soon.
      Gracias.

  • @reiserkeiser
    @reiserkeiser Год назад

    Dude, the volume in all your videos is seriously always bad. Extremely hard to hear even with volume all the way up to 100.

  • @mongodb7832
    @mongodb7832 11 месяцев назад

    CVE-2020-0796,CVE-2018-13374, CVE-2018-13379

Следующие
Автовоспроизведение
Splunk SIEM Basics For Beginners | TryHackMe Splunk: Basics24:03Splunk SIEM Basics For Beginners | TryHackMe Splunk: Basics
Splunk SIEM Basics For Beginners | TryHackMe Splunk: BasicsMotasem Hamdan
Просмотров 40 тыс.
Investigating A Hacked Windows with Powershell | TryHackMe Investigating Windows 3.X45:12Investigating A Hacked Windows with Powershell | TryHackMe Investigating Windows 3.X
Investigating A Hacked Windows with Powershell | TryHackMe Investigating Windows 3.XMotasem Hamdan
Просмотров 4,3 тыс.
Windows Endpoint Investigation with Splunk | TryHackMe New Hire Old Artifacts24:36Windows Endpoint Investigation with Splunk | TryHackMe New Hire Old Artifacts
Windows Endpoint Investigation with Splunk | TryHackMe New Hire Old ArtifactsMotasem Hamdan
Просмотров 2,5 тыс.
Can You Beat DARK SOULS 1 With Only Fire Surge?21:13Can You Beat DARK SOULS 1 With Only Fire Surge?
Can You Beat DARK SOULS 1 With Only Fire Surge?The Backlogs
Просмотров 297 тыс.
Vince Vaughn Catches a Hot Streak While Eating Spicy Wings | Hot Ones26:04Vince Vaughn Catches a Hot Streak While Eating Spicy Wings | Hot Ones
Vince Vaughn Catches a Hot Streak While Eating Spicy Wings | Hot OnesFirst We Feast
Просмотров 2,7 млн
Shelly-Ann Fraser-Pryce & Sha'Carri Richardson THROW DOWN In Women's 100 Meters || 2024 Olympics08:45Shelly-Ann Fraser-Pryce & Sha'Carri Richardson THROW DOWN In Women's 100 Meters || 2024 Olympics
Shelly-Ann Fraser-Pryce & Sha'Carri Richardson THROW DOWN In Women's 100 Meters || 2024 OlympicsTotal Running Productions
Просмотров 1,8 млн
Introducing The Wizarding World of Harry Potter™ - Ministry of Magic™06:17Introducing The Wizarding World of Harry Potter™ - Ministry of Magic™
Introducing The Wizarding World of Harry Potter™ - Ministry of Magic™Universal Orlando Resort
Просмотров 647 тыс.
The Conti Leak: We read the code of the ransomware23:20The Conti Leak: We read the code of the ransomware
The Conti Leak: We read the code of the ransomwareThe Morpheus Tutorials
Просмотров 26 тыс.
Cyber Incident Response with Splunk | TryHackMe Incident Handling with Splunk44:44Cyber Incident Response with Splunk | TryHackMe Incident Handling with Splunk
Cyber Incident Response with Splunk | TryHackMe Incident Handling with SplunkMotasem Hamdan
Просмотров 24 тыс.
Investigating FTP with Splunk | TryHackMe Boss of the SOC v221:30Investigating FTP with Splunk | TryHackMe Boss of the SOC v2
Investigating FTP with Splunk | TryHackMe Boss of the SOC v2Motasem Hamdan
Просмотров 9 тыс.
Investigate an Infected Machine with Splunk | TryHackMe Benign22:07Investigate an Infected Machine with Splunk | TryHackMe Benign
Investigate an Infected Machine with Splunk | TryHackMe BenignMotasem Hamdan
Просмотров 7 тыс.
Tracking Cybercrime on Telegram23:26Tracking Cybercrime on Telegram
Tracking Cybercrime on TelegramJohn Hammond
Просмотров 316 тыс.
Cyber Incident Investigation with Splunk | TryHackMe Investigating with Splunk14:28Cyber Incident Investigation with Splunk | TryHackMe Investigating with Splunk
Cyber Incident Investigation with Splunk | TryHackMe Investigating with SplunkMotasem Hamdan
Просмотров 13 тыс.
Threat Hunting with Sysmon For Security Operations Center | TryHackMe Sysmon50:40Threat Hunting with Sysmon For Security Operations Center | TryHackMe Sysmon
Threat Hunting with Sysmon For Security Operations Center | TryHackMe SysmonMotasem Hamdan
Просмотров 13 тыс.
Detect Hackers & Malware on your Computer (literally for free)16:38Detect Hackers & Malware on your Computer (literally for free)
Detect Hackers & Malware on your Computer (literally for free)John Hammond
Просмотров 297 тыс.
Hacking Roadmap to Success: AMA with The Cyber Mentor and FREE training!1:21:43Hacking Roadmap to Success: AMA with The Cyber Mentor and FREE training!
Hacking Roadmap to Success: AMA with The Cyber Mentor and FREE training!David Bombal
Просмотров 64 тыс.
НАМ ПРИСЛАЛИ ЕГО С AMAZON ДЛЯ ЖЕЛЕЙНОГО МЕДВЕДЯ ВАЛЕРЫ09:42НАМ ПРИСЛАЛИ ЕГО С AMAZON ДЛЯ ЖЕЛЕЙНОГО МЕДВЕДЯ ВАЛЕРЫ
НАМ ПРИСЛАЛИ ЕГО С AMAZON ДЛЯ ЖЕЛЕЙНОГО МЕДВЕДЯ ВАЛЕРЫПознаватель
Просмотров 340 тыс.
ЮТУБ ТОЧНО ВСЕ!11:23ЮТУБ ТОЧНО ВСЕ!
ЮТУБ ТОЧНО ВСЕ!marazm
Просмотров 1 млн
🔥Огненный фокус с купюрой! #обучениефокусам #напорко #александрнапорко00:58🔥Огненный фокус с купюрой! #обучениефокусам #напорко #александрнапорко
🔥Огненный фокус с купюрой! #обучениефокусам #напорко #александрнапоркоАлександр Напорко
Просмотров 3,3 млн
ЗЕНИТ - РОСТОВ: обзор матча01:03ЗЕНИТ — РОСТОВ: обзор матча
ЗЕНИТ - РОСТОВ: обзор матчаЗЕНИТ
Просмотров 182 тыс.
"Хезболла" запустила ракеты по позициям армии Израиля возле Ливана #shorts #short #новости00:33"Хезболла" запустила ракеты по позициям армии Израиля возле Ливана #shorts #short #новости
"Хезболла" запустила ракеты по позициям армии Израиля возле Ливана #shorts #short #новостиТелеканал ОНТ
Просмотров 410 тыс.
У украинских семей в странах ЕС отобрали уже 430 детей. #дети #семья #украина #незалежная #ес00:37У украинских семей в странах ЕС отобрали уже 430 детей. #дети #семья #украина #незалежная #ес
У украинских семей в странах ЕС отобрали уже 430 детей. #дети #семья #украина #незалежная #есАТН: новости Беларуси и мира
Просмотров 407 тыс.
ОСКАР и КВИНКА СВИДАНИЕ! БАДАБУМЧИК ПОДСТАВИЛ ОСКАРА?!14:15ОСКАР и КВИНКА СВИДАНИЕ! БАДАБУМЧИК ПОДСТАВИЛ ОСКАРА?!
ОСКАР и КВИНКА СВИДАНИЕ! БАДАБУМЧИК ПОДСТАВИЛ ОСКАРА?!Бадабумчик
Просмотров 530 тыс.
ЛЕБЕДЕВ у ДУДЯ: муху не обманешь 😁 [Пародия]07:36ЛЕБЕДЕВ у ДУДЯ: муху не обманешь 😁 [Пародия]
ЛЕБЕДЕВ у ДУДЯ: муху не обманешь 😁 [Пародия]Юрий ВЕЛИКИЙ
Просмотров 655 тыс.