Forum Discussion

Bronze II

1 year ago

Solved

APT29 Threat Hunting with Splunk: Ep.11 – Demonstrate Your Skills - Question to Q9

Hello everyone I can't find the solution to question 9 (How many file types were exfiltrated at this stage?) in APT29 Threat Hunting with Splunk: Ep.11 - Demonstrate Your Skills. I thought it was th...

challenges

defensive cyber

help & support

steven
1 year ago
you should find something like:
ParameterBinding(Get-ChildItem): name="Include"; value="*.doc, *.xps, ....
just count all the fileendings and count them.

steven

Ambassador

1 year ago

you should find something like:

ParameterBinding(Get-ChildItem): name="Include"; value="*.doc, *.xps, ....

just count all the fileendings and count them.

technowooki
Bronze II
1 year ago
Thx for the help. :)

Forum Discussion

APT29 Threat Hunting with Splunk: Ep.11 – Demonstrate Your Skills - Question to Q9

Featured Places

Help

Related Content

Threat Hunting Mining Behaviour - Question 1

APT29 Threat Hunting with Elasticsearch: Ep.11 – Demonstrate Your Skills

Threat Hunting: Cowrie Honeypot - Question on Panama

PowerShell Basics: Demonstrate Your Skills question 11/12

How to Answer a Question

Recent Discussions

Lab not getting complete even it is correct

Modern Encryption Issue

Lesson 7: Windows File Permissions

Need help in Splunk Lab!

AI Agent Governance: Auditing an Over-Privileged Agent