This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject

NetWitness Community

  • Home
  • Products
    • NetWitness Platform
      • Advisories
      • Documentation
        • Platform Documentation
        • Known Issues
        • Security Fixes
        • Hardware Documentation
        • Threat Content
        • Unified Data Model
        • Videos
      • Downloads
      • Integrations
      • Knowledge Base
    • NetWitness Cloud SIEM
      • Advisories
      • Documentation
      • Knowledge Base
    • NetWitness Detect AI
      • Advisories
      • Documentation
      • Knowledge Base
    • NetWitness Investigator
    • NetWitness Orchestrator
      • Advisories
      • Documentation
      • Knowledge Base
      • Legacy NetWitness Orchestrator
        • Advisories
        • Documentation
  • Community
    • Blog
    • Discussions
    • Events
    • Idea Exchange
  • Support
    • Case Portal
      • Create New Case
      • View My Cases
      • View My Team's Cases
    • Community Support
      • Getting Started
      • News & Announcements
      • Community Support Forum
      • Community Support Articles
    • Product Life Cycle
    • Support Information
    • General Security Advisories
  • Training
    • Blog
    • Certification Program
    • Course Catalog
      • Netwitness XDR
      • EC-Council Training
    • New Product Readiness
    • On-Demand Subscriptions
    • Student Resources
    • Upcoming Events
    • Role-Based Training
  • Technology Partners
  • Trust Center
Sign InRegister Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
DarrenMccutchen
Frequent Contributor DarrenMccutchen Frequent Contributor
Frequent Contributor
since ‎2018-09-11
2 weeks ago

User Statistics

  • 10 Posts
  • 0 Solutions
  • 2 Likes given
  • 34 Likes received
Take a Bow
First Reply
Round of Applause
Good Start
View all badges
  • NetWitness Community
  • About DarrenMccutchen

User Activity

  • Posts
  • Replies

Threat Profile Series: An Introduction to Royal Ransomware

by DarrenMccutchen 2 weeks ago general.in NetWitness Community Blog
2 weeks ago
Towards the end of 2022, researchers at SOCRadar recognized a relatively new cyber gang, Royal, as the most active ransomware threat. Attacks linked to Royal Ransomware have impacted a diverse pool of victims across many geographical regions and mult...

Examining APT27 and the HyperBro RAT

by DarrenMccutchen 2022-12-10 general.in NetWitness Community Blog
2022-12-10
Earlier this Fall, the Cybersecurity & Infrastructure Security Agency (CISA) released an Alert Bulletin detailing campaigns perpetrated by several advance persistent threat (APT) groups against a Defense organization(1) . While several of the tools h...

FirstWatch Threat Spotlight – QuasarRAT

by DarrenMccutchen 2022-08-17 general.in NetWitness Community Blog
2022-08-17
Authors: Darren McCutchen, Jeeth Mathai, Manoj Pilli Background: QuasarRAT is an open-source .NET remote administration tool. Although originally created for legitimate functions (ex: remotely troubleshooting a corporate laptop), it has been adopted ...

No Laughing Matter: Using NetWitness EDR to Detect SysJoker

by DarrenMccutchen 2022-07-29 general.in NetWitness Community Blog • latest reply by EricSchwartz 2022-07-29
2022-07-29
In December of 2021, Intezer discovered a novel multi-platform malware[i]. Dubbed SysJoker, this backdoor written in C++ has the ability to infect Windows, Linux, and MacOS systems. In analyzed attacks, all 3 versions of the malware were seen to have...

Threat Analysis: Detecting “Follina” (CVE-2022-30190) RCE Vulnerability with Netwitness Endpoint

by DarrenMccutchen 2022-06-04 general.in NetWitness Community Blog
2022-06-04
Threat Analysis: Detecting “Follina” (CVE-2022-30190) RCE Vulnerability with Netwitness Endpoint By: Darren McCutchen and Cody Spooner UPDATE - Microsoft has included a patch for CVE-2022-30190 with the release of their June 14, 2022 Security update,...
View more

Re: No Laughing Matter: Using NetWitness EDR to Detect SysJoker

by DarrenMccutchen 2022-07-29 general.in NetWitness Community Blog
2022-07-29
@EricSchwartz Rules are now available on NW Live. Sorry for the delay.
Likes from
User Count
Sarthak
Occasional Contributor Sarthak Occasional Contributor
9
manojpilli
Consumer manojpilli Consumer
3
EricSchwartz
EricSchwartz Contributor
7
RajasSave
Respected Contributor RajasSave Respected Contributor
1
EdPadilla
EdPadilla Occasional Contributor
2
View all
Likes given to
User Count
Will_G
Moderator Will_G Moderator
1
RajasSave
Respected Contributor RajasSave Respected Contributor
1
View all
Powered by Khoros
  • Blog
  • Events
  • Discussions
  • Idea Exchange
  • Knowledge Base
  • Case Portal
  • Community Support
  • Product Life Cycle
  • Support Information
  • About the Community
  • Terms & Conditions
  • Privacy Statement
  • Acceptable Use Policy
  • Employee Login
© 2022 RSA Security LLC or its affiliates. All rights reserved.