Indicators of Compromise (IoC) and How They are Detected
Sifting through more of my old class assignments from last semester, this one is a good post to add that I may want to add future posts to piggy-back off the following prompt with:
Indicators of compromise act as breadcrumbs that lead forensic analysts to detect malicious activity early in the attack sequence. Describe 3 indicators of compromise of a potential or in-progress attach and where in a system or network it would occur.
How can the IoCs described by your peers be detected? In other words, what tools could be used?
Here's my response to that prompt:
