• Skip to primary navigation
  • Skip to content
  • Skip to footer
Security Content Security Content
  • Detections
  • Analytic Stories
  • Playbooks
  • Blog
  • About
    Splunk Threat Reasearch Team (STRT)

    Splunk Threat Reasearch Team (STRT)

    We help security teams around the globe strengthen operations by providing tactical guidance and insights to detect, investigate and respond against the latest threats.

    • The Mothership
    • Website
    • Email

    Recent Posts

    Detect DNS requests to Phishing Sites leveraging EvilGinx2

    Spearphishing via Service

    Detect AWS API Activities From Unapproved Accounts

    Cloud Accounts

    Clients Connecting to Multiple DNS Servers

    Exfiltration Over Unencrypted/Obfuscated Non-C2 Protocol

    Attempt To Stop Security Service

    Disable or Modify Tools , Impair Defenses

    Abnormally High AWS Instances Terminated by User - MLTK

    Cloud Accounts

    • Previous
    • 1
    • …
    • 175
    • 176
    • 177
    • 178
    • 179
    • …
    • 200
    • Next
    • Twitter
    • GitHub
    • Feed
    © 2022 Splunk Threat Research Team (STRT). Powered by Jekyll & Minimal Mistakes.