Useful links

• Investigation

  • speakerdeck – ADCS documentation
  • shenaniganslabs – Kerberos s4u article
  • Windows-Registry-Analysis-Cheat-Sheet
  • Detection.fyi – Some detection rules
  • web-check – complete check website, records
  • ssllabs – Check SSL certificates
  • Browserling – URL Sandbox
  • Virustotal – Check IOC
  • Urlscan – Check URL
  • Mxtoolbox – Check Mail conf
  • ViewDNS – Check DNS info
  • Whatsmydns – Check propagation DNS
  • Myip – Check your IP quickly
  • Zscaler – Check their CIDR

• Splunk

  • Splunk github
  • Splunk ESCU

• Lab

  • Commando-vm
  • Attackgen

• Red team

  • Bypass AMSI
  • CRTP-cheatsheet