-
Aug 12, 2020
Varonis eBook: WMI Events and Insider Surveillance
If you’ve been reading our blog, you know that Windows software can be weaponized to allow hackers to live-off-the-land and stealthily steal sensitive data. Insiders are also aware of the...
Michael Buckbee
1 min read
-
Aug 12, 2020
The No Hassle Guide to Event Query Language (EQL) for Threat Hunting
Did you ever have the urge to put together a few PowerShell scripts to parse and analyze the Sysmon event log in order to create your own threat analysis software?...
Michael Buckbee
11 min read
-
Aug 10, 2020
What is a Man-in-the-Middle Attack: Detection and Prevention Tips
Man-in-the-middle attacks are sophisticated spying techniques attackers use to snoop on network traffic. Read on to learn more about these MitM attacks.
Michael Buckbee
7 min read
-
Jul 29, 2020
Varonis Recognized as a 2020 Gartner Peer Insights Customers’ Choice for File Analysis Software
Varonis was rated 4.6 out of 5 stars in Gartner Peer Insights File Analysis Software, based on 211 reviews as of 23 July 2020. Download the full report.
Avia Navickas
2 min read
-
Jul 28, 2020
DNS Security Guide
DNS security should be considered an essential part of any business's security plan. Our goal in this piece is to help provide information to best inform you of all options around securing your DNS.
Michael Buckbee
5 min read
-
Jul 14, 2020
Active Directory Account Lockout: Tools and Diagnosis Guide
AD Account Lockouts are perhaps the biggest source of frustration for IT admins. In this guide, we’ll explain how they happen, and how to prevent them.
Michael Buckbee
6 min read
-
Jun 23, 2020
Malware Protection: Basics and Best Practices
Our malware protection guide covers malicious software, utilizing the outlined controls and best practices to achieve a higher level of security.
Michael Buckbee
12 min read
-
Jun 23, 2020
What is a Domain Controller, When is it Needed + Set Up
Domain controllers are common targets of attackers. Learn how to protect and secure your domain controllers to prevent data breaches.
Michael Buckbee
2 min read
-
Jun 19, 2020
Working With Windows Local Administrator Accounts, Part II
Before we delve into Restricted Groups, I thought it might be worthwhile to take a closer look at how hackers take advantage of Administrator passwords. For Pass-the-Hash fans, this post...
Michael Buckbee
4 min read
-
Jun 19, 2020
Finding EU Personal Data With Regular Expressions (Regexes)
If there is one very important but under-appreciated point to make about complying with tough data security regulations such as the General Data Protection Regulation (GDPR), it’s the importance of finding...
Michael Buckbee
3 min read
-
Jun 19, 2020
How To Get Started with PowerShell and Active Directory Scripting
This article is a text version of a lesson from our PowerShell and Active Directory Essentials video course (use code ‘blog’ for free access). The course has proven to be...
Michael Buckbee
5 min read
-
Jun 19, 2020
Detecting Malware Payloads in Office Document Metadata
Ever consider document properties like “Company,” “Title,” and “Comments” a vehicle for a malicious payload? Checkout this nifty PowerShell payload in the company metadata: #powershell payload stored in office metadataDocument...
Rob Sobers
1 min read