Tuesday, December 7, 2021

Threat Hunting With Yara Rules

Threat hunting is currently one of the most sought-after skills in network security. The reason behind it is the proactive approach to looking for threats rather than the reactive approach — looking at your SIEM alerts — and then responding to them.

In a threat hunting approach, when we find some malicious file, binary, or a program, we need to collect the artifacts from them and search within our whole environment to find any possible traces of malicious activity. This process is usually done …

Read More

Latest news
Related news