Sharing our knowledge
Knowledge center
FalconFriday — Automating acquisition for incident response — 0xFF23
[dsm_breadcrumbs show_home_icon="off" separator_icon="K||divi||400" admin_label="Supreme Breadcrumbs" _builder_version="4.18.0" _module_preset="default" items_font="||||||||" items_text_color="rgba(255,255,255,0.6)" custom_css_main_element="color:...
BloodHound — Calculating AD metrics 0x02
[dsm_breadcrumbs show_home_icon="off" separator_icon="K||divi||400" admin_label="Supreme Breadcrumbs" _builder_version="4.18.0" _module_preset="default" items_font="||||||||" items_text_color="rgba(255,255,255,0.6)" custom_css_main_element="color:...

FalconFriday — Detecting UAC Bypasses — 0xFF16

FalconFriday — Detecting important data destruction by ransomware — 0xFF15

FalconFriday — Direct system calls and Cobalt Strike BOFs — 0xFF14

FalconFriday — Privilege Escalations to SYSTEM — 0xFF13

FalconFriday — Certified Pre-Owned— 0xFF12

FalconFriday — AzureAD Edition—0xFF11

FalconFriday — Password Spraying with(out) MDI—0xFF10

Sysmon 13.10 — FileDeleteDetected

FalconFriday — Process Injection revisited — 0xFF0F
Together. Secure. Today.
Stay in the loop and sign up to our newsletter

FalconForce realizes ambitions by working closely with its customers in a methodical manner, improving their security in the digital domain.
Energieweg 3
3542 DZ Utrecht
The Netherlands
FalconForce B.V.
[email protected]
(+31) 85 044 93 34
[email protected]
(+31) 85 044 93 34
KVK 76682307
BTW NL860745314B01