SOC Update (22 Jun - 36 Jun 2020)

Progress / Completed Projects & Tasks



Plan / Work in progress





Roadblocks / Problems




Notable Incidents 

SOC-165 Botnet Type behaviour from one source IP 10.10.22.6 towards 147.32.221.X subnet over port 445
Status: Contained.  Old windows 7 unpatched system, with no antivirus. Performing further analysis on velociraptor dump (memory and files).
 Details at : https://29022131.atlassian.net/browse/SOC-166