Tag

threat hunting

6 articles on threat hunting.

← All blog posts
Pourquoi les CVE sont critiques pour les SOC, même quand tout semble déjà monitoré
VulnerabilitiesMay 24, 2026

Pourquoi les CVE sont critiques pour les SOC, même quand tout semble déjà monitoré

Les CVE ne sont pas seulement un sujet patch management : elles structurent la priorisation SOC, le threat hunting, les contrôles compensatoires et la communication de crise.

5 min read
Malicious Infrastructure Clustering: How Passive DNS, TLS Certificates, and ASNs Reveal Shared Campaigns
SecurityMay 3, 2026

Malicious Infrastructure Clustering: How Passive DNS, TLS Certificates, and ASNs Reveal Shared Campaigns

A single C2 IP is a clue; shared signing patterns and DNS co-occurrence are a map. This guide explains how defenders cluster infrastructure without chasing ghosts—and how to document findings for IR, threat intel, and law enforcement handoffs.

6 min read
OSINT for SOC Analysts: Turning Open Source Intelligence Into Actionable Threat Intelligence
SOCApr 23, 2026

OSINT for SOC Analysts: Turning Open Source Intelligence Into Actionable Threat Intelligence

A complete guide to open source intelligence (OSINT) for security operations—tools, techniques, workflows, and legal considerations for collecting, analyzing, and operationalizing open threat data in a modern SOC.

10 min read
Operational Threat Intelligence: Turning IOCs into Prioritized Security Actions
GuideApr 19, 2026

Operational Threat Intelligence: Turning IOCs into Prioritized Security Actions

Define operational CTI that SOC teams can use daily: IOC lifecycle, confidence scoring, feed hygiene, and how to align indicators with detection engineering and incident response.

9 min read
File Hash Analysis: MD5, SHA-1, and SHA-256 for Malware Detection and Threat Hunting
MalwareApr 18, 2026

File Hash Analysis: MD5, SHA-1, and SHA-256 for Malware Detection and Threat Hunting

A practical guide to file hashes in cybersecurity—how MD5, SHA-1, and SHA-256 work, why they matter for malware detection, incident response, and threat hunting, and how to use hash lookups to enrich indicators of compromise.

9 min read
Domain Lookup for Phishing and C2 Infrastructure Detection
PhishingApr 10, 2026

Domain Lookup for Phishing and C2 Infrastructure Detection

Phishing campaigns and malware operations depend on domain infrastructure that leaves detectable traces. Learn how advanced domain lookup techniques help security teams uncover phishing sites and command-and-control servers before they compromise your organization.

8 min read