Forum Discussion

Silver I

2 months ago

Solved

Cyber Kill Chain: Delivery

Hello,

I was wondering if anybody else is experiencing the same issue as me as I feel what I am entering is correct but not getting any search results? This is for Q4. I also find it quite problematic because if what I am entering is correct and I'm not getting any search results, this would result in me thinking that my commands are wrong. I have also reset the lab to no avail.

help & support

barney
2 months ago
Your query is very nearly there but, after you've initially filtered out the POST requests, try applying a search for "*.exe" as a secondary filter i.e.
index="botsv1" etc...
| search="*.exe"

4 Replies

barney
Bronze III
2 months ago
Your query is very nearly there but, after you've initially filtered out the POST requests, try applying a search for "*.exe" as a secondary filter i.e.
index="botsv1" etc...
| search="*.exe"
- Dark_Knight666
  Silver I
  2 months ago
  barney - Many thanks for your advice, but now I'm getting the below 😫
barney
Bronze III
2 months ago
My bad, sorry - search doesn't require the = symbol
netcat
Silver III
2 months ago
From my point of view: Just don't mix ", “ and ”. I didn't try to enter your query with the double quotes you used, but using only ". That works.

Forum Discussion

Cyber Kill Chain: Delivery

4 Replies

Featured Places

Help

Related Content

Cyber Kill Chain: Demonstrate Your Skills

How is Cyber Team Sim different from Cyber Ranges?

CVE-2024-3094 (XZ Utils Supply Chain Backdoor)

How do I enrol for Cyber Million?

Cyber Million Overview

Recent Discussions

IoT & Embedded Devices: Certificate Underpinning

Trick or Treat on Specter Street: Morphy's Mansion Challenge

Trick or Treat on Specter Street: Morphy’s Mansion

Credential Access: Password Hashing Algorithms

Trick or Treat on Specter Street: Ghost of the SOC