mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-06-11 21:54:56 +03:00
mukul975
9 lines
354 B
Markdown
9 lines
354 B
Markdown
# Workflows
|
|
## Fileless Attack Detection
|
|
```
|
|
[Enable telemetry (Sysmon, PS logging, AMSI)] → [Build detection rules per technique]
|
|
→ [Deploy rules in SIEM] → [Threat hunt for historical fileless indicators]
|
|
→ [Triage alerts] → [Investigate memory for confirmed incidents]
|
|
→ [Extract IOCs from memory analysis] → [Tune detections]
|
|
```
|