Forum Discussion

Bronze I

1 month ago

Wizard Spider DFIR: Ep.9 – Sigma

The question I'm stuck on is : Modify the rule file "file_event_win_macro_file.yml" to also include ".docm" file types. Convert this rule using Sigmac and use the output within Elastic. How many pot...

Community Manager

1 month ago

Hey gilly32, I know a few people who have completed this lab who might be able to give a help: Carlossus GusC neeemu purplemoon CyberSharpe. Otherwise I'll get one of the team to have a look for you.

Forum Discussion

Wizard Spider DFIR: Ep.9 – Sigma

Featured Places

Help

Related Content

Wizard Spider DFIR: Ep.10 – Demonstrate Your Skills

ImmersiveOne: Scattered Spider Release

tweaks to career paths

Re: Introduction to OWASP ZAP

Re: Terrapoint (Hats off, Immersive Labs)

Recent Discussions

SOC Analyst – Advanced / Malware Analysis / CookieMiner

Jinja2 Pen test

Introduction to Microsoft Sentinel - Error

Infrastructure Hacking: Demonstrate Your Skills – Attacking Web Servers

PowerShell Basics: Demonstrate Your Skills