Malware Devil

Loading...

Thursday, January 21, 2021

Windows Certificate Export: Detections Inspired by the SolarWinds Compromise

TL/DR Methods to detect when a certificate is exported from a Windows system are discussed in detail below using the audit log “Certificate Services Lifecycle Notifications” and collecting the log messages with “MS Windows Event Logging XML – Generic” log…

The post Windows Certificate Export: Detections Inspired by the SolarWinds Compromise appeared first on LogRhythm.

The post Windows Certificate Export: Detections Inspired by the SolarWinds Compromise appeared first on Security Boulevard.

Read More

The post Windows Certificate Export: Detections Inspired by the SolarWinds Compromise appeared first on Malware Devil.



https://malwaredevil.com/2021/01/21/windows-certificate-export-detections-inspired-by-the-solarwinds-compromise/?utm_source=rss&utm_medium=rss&utm_campaign=windows-certificate-export-detections-inspired-by-the-solarwinds-compromise
at
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Barbary Pirates and Russian Cybercrime

In 1801, the United States had a small Navy. Thomas Jefferson deployed almost half that Navy—three frigates and a schooner—to the Barbary C...