Triaging Windows Event Failed Logons

Triaging Windows Event Failed Logons

Security & SOC analysts are frequently tasked with the triaging of event log data. This article serves as a reference point for those in need of investigating failed logon attempts, a.k.a. Windows Event Log ID 4625. Given the numerous opportunities for logging on...
Beyond the Curve Cyber Stream Series

Beyond the Curve Cyber Stream Series

We are all hearing the same thing these days, ‘I just want things to go back to normal’. While we know for sure that we will get through this, how sure are we that Covid-19 hasn’t changed our normal and what facets of our lives will be changed forever? What will our...