redblue: Empire Post-Exploitation Analysis with Rekall and PowerShell Windows Event Logs (Reddit)

2015-09-24 02:15

News URL

http://www.reddit.com/r/netsec/comments/3m4oa9/redblue_empire_postexploitation_analysis_with/

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.