| 2018-04-09 | Threat Hunting & Adversary Emulation: The HELK vs APTSimulator - Part 2 | ourren | 2089 | |
| 2018-04-08 | Python工具分析风险数据 | bigsec岂安科技 | 4939 | |
| 2018-04-08 | 犯罪情报分析师知识和能力清单(初稿) | ourren | 1800 | |
| 2018-04-04 | A Study on Threat Intelligence Platforms (TIPs) | ourren | 1463 | |
| 2018-04-04 | Threat Hunting via Windows Event Logs | ourren | 1821 | |
| 2018-04-02 | Bitcoin and Cryptocurrency Tracking with the ELK Stack | ourren | 8997 | |
| 2018-03-31 | YARA Rules for Finding and Analyzing in InfoSec | ourren | 1978 | |
| 2018-03-29 | Exploring the opportunities and limitations of Threat Intelligence Platforms | ourren | 2275 | |
| 2018-03-27 | Signature Based Detection of User Events for PostMortem Forensic Analysis | tolive | 1752 | |
| 2018-03-25 | Attack Infrastructure Logging – Part 4: Log Event Alerting | ourren | 2019 | |
| 2018-03-25 | Attack Infrastructure Logging – Part 3: Graylog Dashboard 101 | ourren | 2640 | |
| 2018-03-25 | Attack Infrastructure Logging – Part 2: Log Aggregation | ourren | 1855 | |
| 2018-03-25 | Attack Infrastructure Logging – Part 1: Logging Server Setup | ourren | 1587 | |
