Malicious PyPi is a blue team lab that falls under the Endpoint Forensics category and will cover the following subjects: Event Log Explorer, DB Browser for SQLite, EZ Tools, Strings, Execution, Defense Evasion, Command and Control.
Learning Objectives
Perform forensic analysis on a compromised Windows system to identify malware, trace attacker activity, and understand persistence mechanisms.
Categories: Endpoint Forensics.
MITRE ATT&CK Tactics: Execution, Defense Evasion, Command and Control.
Tools: EZ Tools, DB Browser for SQLite, Strings, Event Log Explorer.
Difficulty: medium.
This website uses cookies to ensure you get the best experience on our
website.
Learn more