Skip to navigation Skip to content

Michele's Blog

Madness is the emergency exit

  • About
  • Cyber-attack lifecycle
  • Cyber-Glossary
  • Malware families
  • Malware families by category
August 2021 07
Microsoft Paint: Kernel Mode vs. User Mode
Posted By : Michele Pariani
No Comments

In this blog post, I test how much time Microsoft Paint spends in kernel mode versus user mode.

Read More
December 2020 20
Threat Hunting via Windows Event Logs with DeepBlueCLI
Posted By : Michele Pariani
No Comments

In this blog post, I will use the PowerShell module DeepBlueCLI to quickly discover suspicious account and command line behavior by parsing some sample evtx files from DeepBlueCLI GitHub page.

Read More
December 2020 19
Endpoint Live Forensics from the Command Line on Windows
Posted By : Michele Pariani
No Comments

In this blog post, I will provide an introduction of how to do live forensics on a Windows machine by using default command line tools.

Read More

Recent Posts

  • Microsoft Paint: Kernel Mode vs. User Mode
  • Emotet and “The State of IT Security in Germany in 2020”
  • A few easy tricks to improve the security of your WordPress website
  • Zeus malware. Packet capture analysis with Wireshark
  • Endpoint Live Forensics from the Command Line on Linux

Recent Comments

  • Vinutha J on How to change default credentials in Kali from the terminal
  • Morgan Lucas @ runtcpip.com on Summary of SolarWinds breach for InfoSec noobs
  • Michele Pariani on Summary of SolarWinds breach for InfoSec noobs
  • Tyrone on Summary of SolarWinds breach for InfoSec noobs
  • Michele Pariani on Summary of SolarWinds breach for InfoSec noobs
© 2021 Michele's Blog | WordPress Theme: Uncode