🦖 Velociraptor : During real-world incidents, it's common to have multiple users to investigate. Investigating each profile manually is inefficient, so automation & parallelisation become essential. #incident #forensics #analysis #tools #threats [ https://labs.infoguard.ch/posts/automation_of_vhdx_investigations/ ] #informatique
Suivre
The same open-source tools that help security teams prioritize risk and enhance security outcomes can be misused by threat actors for nefarious purposes. [ https://www.rapid7.com/blog/post/pt-identifying-and-mitigating-potential-velociraptor-abuse/ ]
