SigmaPredator is a blue team lab that falls under the Detection Engineering category and will cover the following subjects: VsCode, Sigma, Chainsaw, Defense Evasion.
Learning Objectives
Design and validate Sigma rules to detect event log clearing techniques across CLI, WMI, and PowerShell execution artifacts.
Categories: Detection Engineering.
MITRE ATT&CK Tactics: Defense Evasion.
Tools: VsCode, Sigma, Chainsaw.
Difficulty: easy.
This website uses cookies to ensure you get the best experience on our
website.
Learn more