K O M A L – Medium

K O M A L

Published in
InfoSec Write-ups

Detecting Threats and Responding with KQL in Microsoft Sentinel

Strengthening Security Posture with KQL-based threat hunting

Feb 21

Detecting Threats and Responding with KQL in Microsoft Sentinel

Feb 21

Published in
InfoSec Write-ups

Enhance your Incident Investigation and Response capabilities with Palo Alto Cortex XDR

A threat-hunting platform for robust protection and rapid resolution

Feb 19

Enhance your Incident Investigation and Response capabilities with Palo Alto Cortex XDR

Feb 19

Get an email whenever K O M A L publishes.

By signing up, you will create a Medium account if you don’t already have one. Review our Privacy Policy for more information about our privacy practices.

Medium sent you an email at to complete your subscription.

Published in
InfoSec Write-ups

Hands-on Introduction to Microsoft KQL

Getting started with KQL Queries

Feb 15

Hands-on Introduction to Microsoft KQL

Feb 15

How to secure your Cloud: Deploy Microsoft Sentinel in Azure

Strengthening Your Cloud Security Posture in Azure

Feb 4

How to secure your Cloud: Deploy Microsoft Sentinel in Azure

Feb 4

Published in
InfoSec Write-ups

SANS 2022 Holiday Hack Challenge & KringleCon

PCAP file & Windows event logs investigation

Jan 15, 2023

SANS 2022 Holiday Hack Challenge & KringleCon

Jan 15, 2023

Published in
InfoSec Write-ups

Performing Security Gap Analysis using Breach & Attack Simulation (BAS) Tools

Continuous Testing and Auditing - Purple Teaming Activity

Dec 24, 2022

Performing Security Gap Analysis using Breach & Attack Simulation (BAS) Tools

Dec 24, 2022

CISSP Domain 3 Notes - Security Architecture and Engineering

Study Guide 9th edition

Dec 19, 2022

CISSP Domain 3 Notes - Security Architecture and Engineering

Dec 19, 2022

Published in
InfoSec Write-ups

Using Threat Intelligence data to generate MISP alerts

There are various Threat Intelligence sources that shares threat information with each other to help identify those threats in their…

Dec 15, 2022

Using Threat Intelligence data to generate MISP alerts

Dec 15, 2022

Published in
InfoSec Write-ups

Operationalizing MITRE ATT&CK to harden cyber defenses

Take Adversary’s perspective in Defender’s Team

Dec 9, 2022

Operationalizing MITRE ATT&CK to harden cyber defenses

Dec 9, 2022

Published in
InfoSec Write-ups

HTB Time [writeup]

Exploiting the RCE and SSRF Vulnerabilities

Dec 5, 2022

HTB Time [writeup]

Dec 5, 2022

Published in
InfoSec Write-ups

Cloud Compute Instance Setup

AWS

Dec 2, 2022

Cloud Compute Instance Setup

Dec 2, 2022

Published in
InfoSec Write-ups

HTB Omni [writeup]

Exploiting Windows IoT Core using SireRAT

Nov 18, 2022

HTB Omni [writeup]

Nov 18, 2022

Published in
InfoSec Write-ups

Fine-Tune Security Alerts & Optimisation

Blue Team SOC Activity

Nov 16, 2022

Fine-Tune Security Alerts & Optimisation

Nov 16, 2022

CISSP Domain 2 notes- Asset Security

Study Guide 9th Edition

Nov 12, 2022

CISSP Domain 2 notes- Asset Security

Nov 12, 2022

Published in
InfoSec Write-ups

Troubleshooting SIEM Collector Issues

Blue Team SOC Activity

Nov 7, 2022

Troubleshooting SIEM Collector Issues

Nov 7, 2022

Published in
InfoSec Write-ups

HTB ‘Blackfield’ [Writeup]

ASREPRoast | Dictionary attack |

Nov 1, 2022

HTB ‘Blackfield’ [Writeup]

Nov 1, 2022

CISSP Domain 1 - Security and Risk Management Revision Notes

Study Guide 9th Edition

Oct 31, 2022

CISSP Domain 1 - Security and Risk Management Revision Notes

Oct 31, 2022

Published in
InfoSec Write-ups

Auditing the Network Devices using Nipper

SecTools

Apr 23, 2021

Auditing the Network Devices using Nipper

Apr 23, 2021

Published in
InfoSec Write-ups

HTB Passage [writeup]

Unrestricted file upload | RCE | weak password | d-bus vulnerability

Mar 11, 2021

HTB Passage [writeup]

Mar 11, 2021

Published in
InfoSec Write-ups

HTB Academy [writeup]

Business Logic Vulnerability | ADM Group

Mar 2, 2021

HTB Academy [writeup]

Mar 2, 2021

K O M A L

K O M A L

Cyber Security Enthusiast

Following

Lists

Microsoft Cyber Security

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams