Microsoft Secure Tech Accelerator
Apr 03 2024, 07:00 AM - 11:00 AM (PDT)
Microsoft Tech Community

New Blog Post | Web Shell Threat Hunting with Azure Sentinel

Microsoft

JasonCohen1892_0-1616701245974.png

Web Shell Threat Hunting with Azure Sentinel - Microsoft Tech Community

In this blog post we will provide Microsoft Azure Sentinel customers with hunting queries to investigate possible on-premises Exchange Server exploitation and identify additional attacker IOCs (Indicators of compromise) such as IP address and User Agent. These hunting techniques can also be applied to web shell techniques targeting other web applications. 

0 Replies