Skip to content

RESOLVN/RTHVM

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
 
 
 
 

Repository files navigation

RTHVM

The Resolvn Threat Hunting Virtual Machine (RTHVM) is a training resource used during a 2019 Packet Hacking Village workshop titled Intel-driven Hunts for Nation-state Activity Using Elastic SIEM.

In this workshop, participants analyzed Windows event logs of known malicious activity from various stages of the attack lifecycle. With key indicators identified, participants built Elastic SIEM Timelines for repeatable detection of MITRE ATT&CK techniques.

Workshop Slides
Virtual Machine

About

Resolvn Threat Hunting Virtual Machine

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published