Incident Response and Detection Engineering

Defensive Strategies, Science, and Analysis.

Techniques to Identify Active Directory Enumeration
Understanding and Detecting MITRE T1003.006 - OS Credential Dumping: DCSync