AzurePot is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: Notepad++, grep, FTK Imager, awk, Execution, Defense Evasion, Command and Control.
Learning Objectives
Understand real-world Linux compromise via CVE-2021-41773 by analyzing disk, memory, and system artifacts to identify attacker techniques, persistence methods, and IOCs.
Categories: Endpoint Forensics.
MITRE ATT&CK Tactics: Execution, Defense Evasion, Command and Control.
Tools: FTK Imager, Notepad++, grep, awk.
Difficulty: medium.
This website uses cookies to ensure you get the best experience on our
website.
Learn more