Forum Discussion

Bronze II

13 days ago

Solved

APT29 Threat Hunting with Splunk: Ep.11 – Demonstrate Your Skills - Question to Q9

Hello everyone I can't find the solution to question 9 (How many file types were exfiltrated at this stage?) in APT29 Threat Hunting with Splunk: Ep.11 - Demonstrate Your Skills. I thought it was th...

challenges

defensive cyber

help & support

steven
11 days ago
you should find something like:
ParameterBinding(Get-ChildItem): name="Include"; value="*.doc, *.xps, ....
just count all the fileendings and count them.

steven

Silver I

11 days ago

you should find something like:

ParameterBinding(Get-ChildItem): name="Include"; value="*.doc, *.xps, ....

just count all the fileendings and count them.

technowooki
Bronze II
10 days ago
Thx for the help. :)

Forum Discussion

APT29 Threat Hunting with Splunk: Ep.11 – Demonstrate Your Skills - Question to Q9

Related Content

How to Answer a Question

How to Ask a Question

Help needed for Threat Hunting: Mining Behaviour

Help needed for Threat Hunting - Credential Access

EC2: Demonstrate Your Skills

Recent Discussions

Weaponization: Payloads – Obfuscation Using PowerShell

Discovery: Enumeration Scripts – Part 1

Windows Hardening: Ep.6 – Pivoting

DDOS Analysis: UDP Flood (Question 8)

Windows Basics: Ep.3 – Registry Roadblock