Chapter 4 of 10 · DFIR 40%

🌐 SUNBURST hid in a single DNS subdomain

Read Wireshark, Zeek conn.log, and DNS traffic the way the FireEye team did when they spotted SolarWinds beaconing to avsvmcloud[.]com. Catch C2 before it costs you the network. 🕸️

Premium Chapter

Create a free account to access this chapter and start learning with hands-on labs.

Create Free Account

Ready to track your progress?

Create a free account to save your progress, earn XP, and access 170+ hands-on cybersecurity labs.

Start Learning Free

Course Progress

Track your learning journey

0 /10

0 % Complete

10 Remaining

Course Chapters

No chapters found for this filter

DFIR

🌐 SUNBURST hid in a single DNS subdomain

Premium Chapter

Ready to track your progress?

Course Progress

Course Chapters

DFIR fundamentals

Disk forensics

Memory forensics

Network forensics

Windows forensics

Linux forensics

Incident response

Malware incident response

Ransomware response

Forensic reporting