Nettitude’s IR team recently had an opportunity to investigate a breach in a cloud environment. The client had recently adopted Office 365 in a hybrid configuration to host a range of Microsoft services for users, including email and SharePoint. They had seen very heavy traffic on their web application and traced the activity back to […]
Author Archive for: Adrian Shaw
About Adrian Shaw
This author has yet to write their bio.Meanwhile lets just say that we are proud Adrian Shaw contributed a whooping 3 entries.
Entries by Adrian Shaw
Background Sysmon (short for system monitor) has been part of the Sysinternals suite for several years. It comprises kernel-mode driver and a Windows service that monitors system events and writes those to Windows event logs. The fact that it is a kernel mode driver gives it a significant advantage over many other monitoring agents. As […]