For a part time job in cyber security, I recently took a test for the second round of interviews. These questions involved giving us security alerts and the info regarding them: hash file, ip, etc.
For these scenarios, I used tools like Hybrid Analysis, Virus Total, and other malware detection websites to gather information on them and report them. Was this the right choice?
I of course listed the techniques and methods each used from Mitre, and listed the random ware family where they belonged. We didn’t have access to any professional tools, but I wanted to see if I used the correct things. Thank you! submitted by /u/Shortest-boi
[link] [comments]
http://dlvr.it/Sz26YT
Full width home advertisement
Blog Archive
-
▼
2023
(178)
-
▼
November
(54)
- Top 25 Advanced Google Dorks for Uncovering Sensit...
- IPv6 Reputation?
- Hall of Fame at NASA
- Mirai Botnet Exploiting Zero-Days in Routers and N...
- HackTheBox — Web Attacks: From XXE Injection to Ad...
- Free cybersecurity tools from pCloud help protect ...
- SOC Analyst in Windows shop: focus on PowerShell, ...
- eLearnSecurity certificates vs PentesterLab+Zseano...
- How i get my first Logic Bug and how to find them
- CISA tools
- Bug Hunter GPT: A Game-Changer in Cybersecurity
- Project 2510: Bug Bounty Challenge — Day 18/25
- Embracing the Future: Bug Bounty Hunting as a Lucr...
- Managing Admin Access in Workstation For Users Wit...
- Step-by-Step guide to writing a Metasploit Script
- The 10 Hottest Cybersecurity Tools And Products Of...
- Confused with career....
- Project 2510: Bug Bounty Challenge — Day 15/25
- How do I begin learning about phishing detection?
- A Guide to Indicators of Compromise (IoC) Analysis
- Took an entry level assessment, was this the right...
- Project 2510: Bug Bounty Challenge — Day 13/25
- Ransomware diaries, part 1: QazLocker -Cyb3rK1dZ h...
- Access control vulnerabilities
- $1000 Bounty: How I scaled a Self-Redirect to an X...
- Do you disable alarms that have a lot of false pos...
- How I hacked Google’s bug tracking system itself f...
- What projects do you use Python for in your job
- Project 2510: Bug Bounty Challenge — Day 9/25
- UK cybersecurity center says 'deepfakes' and other...
- Need advice
- Project 2510: Bug Bounty Challenge — Day 8/25
- File upload - fuzzing, tools and techniques
- Project 2510: Bug Bounty Challenge — Day 7/25
- Career guidance sought
- Pentesting: I wanna be a hackerrr…
- How does an ISSO fit outside of Government
- How I stopped a Wallet Hack and Got Almost Nothing.
- Project 2510: Bug Bounty Challenge — Day 4/25
- Securing corporate social media accounts
- Project 2510: Bug Bounty Challenge — Day 3/25
- Does your company have an AI acceptable use policy?
- Project 2510: Bug Bounty Challenge — Day 2/25
- JIT across resources
- How I sent multiple payment requests on PhonePe, P...
- What do you feel about Attack Surface Management &...
- Project 2510: Bug Bounty Challenge — Day 0/25
- Akamai Bypass! Advanced XSS.
- DIY project ideas?
- Crazy PII leak via API Misconfiguration
- Definition of a “production” system?
- Unmasking AWS Secrets: My Journey with Trufflehog ...
- Why is hard to write secure code in memory-unsafe ...
- Account pre-hijacking using auto login token
-
▼
November
(54)
Advertisement
LIVE CYBERTHREAT
Latest Trends
Contact Form
amcat question search
search Pentest tools
Total Pageviews
Search Blog
Copyright 2017, " Vpentest ". All rights Reserved.
| Designed by Colorlib
No comments:
Post a Comment