Redmondmag.com

DIY Network Monitoring for Hyper-V, Part 1

A failed Hyper-V replication setup prompts a PowerShell-based approach to building lightweight, do-it-yourself health monitoring without the cost or complexity of an enterprise-grade tool ...
GitHub

ryuk_test_files_detected.yml

description: The following analytic identifies the presence of files containing the keyword "Ryuk" in any folder on the C drive, indicative of Ryuk ransomware activity. It leverages the Endpoint ...
GitHub

creation_of_shadow_copy.yml

description: The following analytic detects the creation of shadow copies using Vssadmin or Wmic. It leverages data from Endpoint Detection and Response (EDR) agents, focusing on process execution ...