What are LOLBAS tactics? As I wrote on this previous articleDetecting
Living-Off-The-Land tactics with the RSA NetWitness Platform about
mshta.exe, LOLBAS (Living Off The Land Binaries and Scripts) tactics are
those that involve the use of legitimate...
IntroOctopus was presented at Black Hat London 2019 by Askar. The github
page is available here. It is a pre-operation C2 for Red Teamers, based
on HTTP/S and written in python. This blog post will show the detection
of Octopus (over http) with NetWi...
What are LotL tactics?Living-Off-The-Land tactics are those that involve
the use of legitimate tools for malicious purposes. This is an old
concept but a recent growing trend among threat actors because these
types of techniques are very difficult to...
If you need to achieve HA through load balancing and failover for VLCs
on AWS you can use the built-in AWS load balancer. I have tested this
scenario so I am going to share the outcome here. Before starting I need
to state that VLCs failover/balancin...
Hi Gianluca, Please have a look at this EPL guide EPL Essentials . As
stated there:"When a pattern successfully matches, it will not start
matching again. To ensure that the pattern evaluates to true more than
once, you must utilise the ‘Every’ opera...