Skip to content

Syspanda

SysOps & Security

  • About
  • Donate
  • Newsletter
  • falske tissot ure
  • repliki rolex day date
  • pas cher rolex explorer
  • replica rolex watches
  • Replik Uhren
  • repliki zegarków
  • uk replica watches
  • luksusowe repliki zegarków
  • repliki rolex milgauss
  • pas cher rolex milgauss
  • replica cartier watches
  • replik bremont uhren
  • nike обувки продажба
  • Orologi Rolex Replica
  • replica rolex cellini

Author: Pablo Delgado

Certifications: Preparing for and passing CCSP!

by Pablo Delgado on October 24, 2020October 26, 2020

For this post, I will provide you with my recommended path, in terms of what materials to read and how to practice for the exam. I took the CCSP because… [Continue Reading]

Rapid 7 Nexpose Data to Splunk

by Pablo Delgado on February 19, 2019February 26, 2019

The following is a step-by-step approach to setup Nexpose Data Warehouse to export to a Windows PostGres Database setup and allow Splunk to import it. The current Rapid 7 Splunk… [Continue Reading]

Developing an Adaptive Threat Hunting Solution: The Elasticsearch Stack (Masters Thesis)

by Pablo Delgado on November 26, 2018November 26, 2018

I had the opportunity to write a Thesis for my Security Masters Program at the University of Houston (Program Website here for those interested). It was a long, but fun experience… [Continue Reading]

Finding & Removing Malicious Google Chrome Extensions Via KACE K1000

by Pablo Delgado on August 7, 2018August 7, 2018

Quest KACE K1000 (Former Dell Product), allows you to create “customized” inventory rules that provide flexibility to run commands, whether through standard command prompt, or other methods. For this particular… [Continue Reading]

Threat Hunting: Fine Tuning Sysmon & Logstash to find Malware Callbacks C&C

by Pablo Delgado on July 30, 2018August 14, 2018

If you get a chance you may briefly look at old articles related to this topic as I will be briefly referencing them or quickly summarizing portions of my configuration…. [Continue Reading]

Tracking & Monitoring Domain Admins with Logstash

by Pablo Delgado on July 26, 2018July 26, 2018

Whether your environment was compromised and someone got a hold of your Domain Admin account, or you’re just ensuring that domain admins are logging in to expected systems. It is… [Continue Reading]

Threat Hunting: Finding Persistence Mechanisms

by Pablo Delgado on July 18, 2018July 18, 2018

I wanted to write about the importance of checking for new services as this is an avenue in which attackers leverage their persistence methods. While looking at newly created services… [Continue Reading]

Remote Connection Dashboards: VNC & RDP

by Pablo Delgado on July 16, 2018July 25, 2018

Accountability is important, and sometimes we might need to investigate who made certain changes at a specific time, or ensure that our privileged accounts are not logging in to other… [Continue Reading]

Monitoring VPN Logins & Incorporating them to AD

by Pablo Delgado on June 8, 2018June 8, 2018

Two articles ago I covered how to monitor Active Directory using ELK. Now you should be seeing account login information (successful logins, failed logins, lockouts, etc.). However; When looking at… [Continue Reading]

Labeling endpoint actions with Logstash – Threat Hunting

by Pablo Delgado on May 4, 2018July 31, 2018

There’s been plenty of instances where I have to go through an investigation after a user has clicked on a phishing email and find out what happened later. After performing… [Continue Reading]

Posts navigation

Page 1 Page 2 … Page 5

Categories

Recent Posts

  • Certifications: Preparing for and passing CCSP! October 24, 2020
  • Interacting with FTP/SFTP using Powershell May 31, 2019
  • Rapid 7 Nexpose Data to Splunk February 19, 2019

Archives

  • October 2020
  • May 2019
  • February 2019
  • November 2018
  • September 2018
  • August 2018
  • July 2018
  • June 2018
  • May 2018
  • April 2018
  • March 2018
  • January 2018
  • December 2017
  • November 2017
  • October 2017
  • September 2017
  • August 2017
  • July 2017
  • May 2017
  • March 2017
  • February 2017
  • December 2016

Recent Comments

  • Mariadb Log In Command Line Canvas - logininfos.com on Executing Scripts with Maria-db Command Line
  • infosecTrain on Certifications: Preparing for and passing CCSP!
  • infosectrain on Certifications: Preparing for and passing CCSP!
  • Mariadb Log In Command Line - How to login in MariaDB with OS user without password ... on Executing Scripts with Maria-db Command Line
  • Tom Miller on Executing Scripts with Maria-db Command Line

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Amazon Associate Disclosure

Pablo Delgado is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites. This Helps us pay the web-hosting and domain renewal each year.

Keep this site online

Copyright © 2025 Syspanda. All Rights Reserved.
Gatsby Theme by FRT