cybersecurity
-
TryHackMe Walkthrough – Incident Response – Identification & Scoping
Preparation is the first room in the Incident Response learning path within the TryHackMe learning platform. The learning path consist of the following rooms: In this post I will be walking through Identification & Scoping. Task 1: Introduction Question 1: No answer needed. Task 2: Identification: Unearthing the Existence of a Security Incident Question 1:
-
TryHackMe Walkthrough – Incident Response – Preparation
Preparation is the first room in the Incident Response learning path within the TryHackMe learning platform. The learning path consist of the following rooms: In this post I will walkthrough the Preparation room. Task 1: Introduction Question 1: No answer needed Task 2: Incident Response Capability Question 1: What is an observed occurrence within a
-
TryHackMe – SOC Level 1 Path Complete!
In this post I’d like to talk a bit about TryHackMe and my experience working through the SOC Level 1 learning path. TryHackMe is a learning platform that sends users to virtual machines (VM) they can access through their web browser. Extremely low barrier to entry! Absolutely no previous knowledge is required. I’m not sponsored
-
Weekly Cybersecurity Wrap-up 11/20/23
Projects LinkedIn Learning – CompTIA Security+ Module 9: Operations and Incident Response | Complete! TryHackMe – SOC Level 1(100 % Complete): Phishing Analysis Fundamentals, Phishing Emails in Action, Phishing Analysis Tools, Phishing Prevention, The Greenholt Phish UDemy – Python for Cybersecurity – Gitlab Videos Articles
-
TryHackMe Walkthrough – The Greenholt Phish
Task 1: Just another day as a SOC analyst Only one task for this room. Question 1: What date was the email received? (answer format: M/DD/YY) I opened the email in Thunderbird. Answer: 6/10/20 Question 2: Who is the email from? In the From… Answer: Mr. James Jackson Question 3: What is his email address?
-
TryHackMe Walkthrough – Phishing Prevention
Task 1: Introduction Question 1: After visiting the link in the task, what is the MITRE ID for the “Software Configuration” mitigation technique? Follow the link to https://attack.mitre.org/techniques/T1598/#mitigations. Look for Software Configuration and the ID is there. Answer: M1054 Task 2: SPF (Sender Policy Framework Question 1: Referencing the dmarcian SPF syntax table, what prefix character
-
TryHackMe Walkthrough – Phishing Analysis Tools
Task 1: Introduction Question 1: No answer needed Task 2: What information should we collect? Question 1: No answer needed Task 3: Email header analysis Question 1: What is the official site name of the bank that capitai-one.com tried to resemble? This should be self-explanatory, google capitol one to see what their domain is. Answer:
-
Phishing Email Example | How To Report Phishing Attempts in Gmail
I received this email this morning and I thought it would be a great example to point out the issues in the email that flag it as a phishing email. Alright, here we have Jr. emailing us regarding an invoice. Two things off the bat, I’m not expecting anything from someone named Jr. and I
-
TryHackMe Walkthrough – Phishing Emails in Action
Task 1: Introduction Question 1: No answer needed Task 2: Cancel your PayPal order Question 1: What phrase does the gibberish sender email start with? This answer is in the reading. Look at the email address highlighted with a red circle 2. Answer: noreply
-
TryHackMe Walkthrough – Phishing Analysis Fundamentals
Task 1: Introduction Question 1: No answer needed. Task 2: The Email Address Question 1: Email dates back to what time frame? Answer is in the reading. Second paragraph. Answer: 1970s