Kill Chain Analysis: Threat Hunting Worksheet

Uploaded by

mejameson

0% found this document useful (0 votes)

2 views1 page

Original Title

Kill Chain

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

2 views1 page

Kill Chain Analysis: Threat Hunting Worksheet

Uploaded by

mejameson

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 1

Search inside document

THREAT HUNTING WORKSHEET

Name:
Date:

Kill Chain Analysis

Reconnaissance (Targeted System)
Patient Zero: System and User Information
Computer Name: Logged-in Username:
Operating System: MAC Address:
Vulnerable Applications: Host IP Address(es):

Delivery
Attacker Infrastructure and Dropper File
Malicious Domains: IP Addresses:
Dropper File Name: Dropper File Type:

Exploitation
Infection Vector
☐ Email: Attachment ☐ Web: Phishing Link ☐ Active Exploitation
☐ Email: Phishing Link ☐ Web: Exploit Kit ☐ Other:

Installation
Malware Binary
File Name: File Type:
Malware Family Name:

Command and Control

Command and Control (C2) Communications
Domains Contacted: IPs Contacted:
URLs Contacted:

Actions on Objective
Threat Behavior
☐ Process injection detected? (if so, which process)
☐ Escalation of privileges detected? (if so, which method)
☐ PowerShell / scripting commands detected? (if so, list)
Known Malware Capabilities:

Executive Summary
Date/Time of Patient Zero initial infection:
Total number of systems affected:
Timeline:

Security recommendations:

Sponsored by the Cisco Advanced Threat Solutions team and Cisco Incident Response Services. For assistance with an ongoing breach, contact
IncidentResponse@cisco.com or call 1-844-831-7715.

Ethical Hacking Ibm
Document20 pages
Ethical Hacking Ibm
sviggnesh_hp
No ratings yet
Hunting Red Team Activities With Forensic Artifacts
Document34 pages
Hunting Red Team Activities With Forensic Artifacts
Marius Iulian Rosu
No ratings yet
Threat Hunting Through Email Headers - SQRRL
Document16 pages
Threat Hunting Through Email Headers - SQRRL
Syeda Ashifa Ashrafi Papia
No ratings yet
2022 Threat Detection Report Full Version
Document80 pages
2022 Threat Detection Report Full Version
Carmelo Toledo
No ratings yet
How to Defeat Advanced Malware: New Tools for Protection and Forensics
From Everand
How to Defeat Advanced Malware: New Tools for Protection and Forensics
Henry Dalziel
No ratings yet
CPTE Course
Document11 pages
CPTE Course
Gudden Gupta
No ratings yet
The Osint Cyber War 2023-05-22
Document27 pages
The Osint Cyber War 2023-05-22
David Sanchez Torres
No ratings yet
Metasploit Penetration Testing Cookbook: Chapter No. 4 "Client-Side Exploitation and Antivirus Bypass"
Document44 pages
Metasploit Penetration Testing Cookbook: Chapter No. 4 "Client-Side Exploitation and Antivirus Bypass"
jagdevs7234
No ratings yet
User + Entity Behavior Analytics (Ueba) : The Heart of Next-Generation Threat Hunting
Document19 pages
User + Entity Behavior Analytics (Ueba) : The Heart of Next-Generation Threat Hunting
Shuichi Sakai
No ratings yet
Lecture - 01 - Introduction To Malware Analysis PDF
Document21 pages
Lecture - 01 - Introduction To Malware Analysis PDF
Elena Damon
No ratings yet
Pen Testing Active Directory Environments
Document29 pages
Pen Testing Active Directory Environments
cipdale
100% (1)
Hackthebox and Vulnhub
Document15 pages
Hackthebox and Vulnhub
Rizam Ali Javed
No ratings yet
MTPAHCheatSheetv01 Dark
Document1 page
MTPAHCheatSheetv01 Dark
anuthescorp
No ratings yet
2021 Threat Hunting Report
Document20 pages
2021 Threat Hunting Report
miss misery
0% (1)
Stuxnet Malware Analysis Paper
Document29 pages
Stuxnet Malware Analysis Paper
Alexandra Mirzac
No ratings yet
Ultimate Splunk For Cybersecurity
Document46 pages
Ultimate Splunk For Cybersecurity
Ivan Dori
No ratings yet
Siegecast Cobalt Strike Basics
Document53 pages
Siegecast Cobalt Strike Basics
ZERO 900
100% (1)
Static Malware Analysis Techniques
Document15 pages
Static Malware Analysis Techniques
vibhi
No ratings yet
OWASP SCP Quick Reference Guide - en-US
Document17 pages
OWASP SCP Quick Reference Guide - en-US
helo
No ratings yet
Unit42 - Cloud Threat Report Vol6
Document19 pages
Unit42 - Cloud Threat Report Vol6
Jussi Fabre
No ratings yet
Defense in Depth Checklist Controls: 50 Easy-to-Implement Controls To Strengthen Your Security
Document8 pages
Defense in Depth Checklist Controls: 50 Easy-to-Implement Controls To Strengthen Your Security
Manish Agarwal
No ratings yet
Nessus-Nmap Lab: IST 451 - Network Security
Document6 pages
Nessus-Nmap Lab: IST 451 - Network Security
Cool Aaman
No ratings yet
Rank Software - Threat Hunting Playbook
Document31 pages
Rank Software - Threat Hunting Playbook
Thilina Android
No ratings yet
With Emphasis On Web Applications Security Related Issues
Document28 pages
With Emphasis On Web Applications Security Related Issues
Fsohail
No ratings yet
Intrusion Detection System
Document35 pages
Intrusion Detection System
Rajesh Gangarapu
No ratings yet
TR18 AD MSFT Defence at Scale
Document31 pages
TR18 AD MSFT Defence at Scale
keepzthebeez
No ratings yet
Cloud Security
Document4 pages
Cloud Security
Prince Kumar Bhatia
No ratings yet
OSCP Report Template: Offensive Security Lab/Exam Penetration Test Report
Document12 pages
OSCP Report Template: Offensive Security Lab/Exam Penetration Test Report
MèllinioThèCàssàñövà
No ratings yet
Hands-On Investigation & Threat Hunting Workshop Guide V2 - October 2021 - W - o Machine
Document81 pages
Hands-On Investigation & Threat Hunting Workshop Guide V2 - October 2021 - W - o Machine
DC Expert
No ratings yet
Attacks and Vulnerabilities: Ilya Chalyt Nicholas Egebo
Document46 pages
Attacks and Vulnerabilities: Ilya Chalyt Nicholas Egebo
Akash Agrawal
No ratings yet
Threat Protection - Windows 10
Document3,502 pages
Threat Protection - Windows 10
tetkaC
No ratings yet
2022 Cyber Defenders Playbook
Document22 pages
2022 Cyber Defenders Playbook
Pathum Fernando
100% (2)
Seven Ways To Apply The Cyber Kill Chain With A Threat Intelligence Platform
Document12 pages
Seven Ways To Apply The Cyber Kill Chain With A Threat Intelligence Platform
oscar1andres1pineda1
No ratings yet
A Forensic Analysis of Android Malware - How Is Malware Written and How It Could Be Detected?
Document5 pages
A Forensic Analysis of Android Malware - How Is Malware Written and How It Could Be Detected?
Tharindu Roshana
No ratings yet
Vulnerability Management Training
Document10 pages
Vulnerability Management Training
dedcecd
No ratings yet
Web Application Penetration Testing Course Content
Document9 pages
Web Application Penetration Testing Course Content
happyfeet dash
No ratings yet
Exabeam Security
Document32 pages
Exabeam Security
Abie Widyatmojo
100% (1)
Metasploit - Framework-A Quick Reference PDF
Document81 pages
Metasploit - Framework-A Quick Reference PDF
savanpatel16
No ratings yet
Hunting On The Endpoint PDF
Document30 pages
Hunting On The Endpoint PDF
Mondher Smii
No ratings yet
Syllabus THPv1
Document10 pages
Syllabus THPv1
alex
No ratings yet
Addressing The Cyber Kill Chain2
Document14 pages
Addressing The Cyber Kill Chain2
utama hasiolan
No ratings yet
Report Crowdstrike 2023 Threat Hunting Report
Document54 pages
Report Crowdstrike 2023 Threat Hunting Report
Jan Sullano
No ratings yet
Foundations of Breach & Attack Simulation: Student Guide
Document26 pages
Foundations of Breach & Attack Simulation: Student Guide
Jonathan Gill
No ratings yet
OWASP Top 10: Hacking With Burp Suite: Presentation by Chad Furman
Document20 pages
OWASP Top 10: Hacking With Burp Suite: Presentation by Chad Furman
Maal Dai
No ratings yet
Offensive Security Certified Professional Exam Report
Document11 pages
Offensive Security Certified Professional Exam Report
rberrospi
No ratings yet
CompTIA Security Test 1
Document7 pages
CompTIA Security Test 1
ann
No ratings yet
Apache Security Guide
Document22 pages
Apache Security Guide
scrib_nok
No ratings yet
Data Network Threats and Penetration Testing
Document5 pages
Data Network Threats and Penetration Testing
Journal of Telecommunications
100% (1)
DTE M: Operations
Document26 pages
DTE M: Operations
Herick Hrck
No ratings yet
Comprehensive Lab
Document32 pages
Comprehensive Lab
Sudharsan Bala
No ratings yet
Mitre Att&Ck Framework-2
Document11 pages
Mitre Att&Ck Framework-2
sumititpro
No ratings yet
© 2018 Caendra, Inc. - Hera For PTP - Nessus
Document17 pages
© 2018 Caendra, Inc. - Hera For PTP - Nessus
Saw Gyi
No ratings yet
Penetration Testing Fundamentals -1: Penetration Testing Study Guide To Breaking Into Systems
From Everand
Penetration Testing Fundamentals -1: Penetration Testing Study Guide To Breaking Into Systems
Devi Prasad
No ratings yet
DFIR
Document26 pages
DFIR
Andrei Stefan
No ratings yet
SANS SEC504 - Hacker Tools, Techniques, and Incident Handling ABC Including Course, CTF and Exam Review. - LinkedIn
Document8 pages
SANS SEC504 - Hacker Tools, Techniques, and Incident Handling ABC Including Course, CTF and Exam Review. - LinkedIn
diogodonadoni
No ratings yet
Sophoslabs Ransomware Behavior Report
Document29 pages
Sophoslabs Ransomware Behavior Report
Saurabh Sharma
No ratings yet
Cysa+ Cs0-002 Exam Topics Notes: 1.0 Threat and Vulnerability Management
Document15 pages
Cysa+ Cs0-002 Exam Topics Notes: 1.0 Threat and Vulnerability Management
ainz
No ratings yet
Penetration Test Report: Client: Logically Insecure / 2BIO706
Document39 pages
Penetration Test Report: Client: Logically Insecure / 2BIO706
Daniel RM
No ratings yet
The Art and Science of Detecting Cobalt Strike: by Nick Mavis
Document29 pages
The Art and Science of Detecting Cobalt Strike: by Nick Mavis
Coiba
No ratings yet
Intrusion detection system Standard Requirements
From Everand
Intrusion detection system Standard Requirements
Gerardus Blokdyk
No ratings yet