To complete this intense 2024 year, Swiss Post Cybersecurity got the chance to be invited by Elastic as a partner to the ElasticON 2024, organized in Munich. With our COO, Manoé Zwahlen and our SIEM Architect, Romain Petro (me), we took the opportunity to meet Elastic partners and resellers on the German side, and also …
Swiss Post Cybersecurity @ ElasticON 2024 in Munich Read More »
In the heart of Las Vegas, where the desert heat meets the neon glow, DEFCON32 brought together some of the sharpest minds in cybersecurity. This year, for the first time, the event took place at the Las Vegas Convention Center (LVCC), drawing in over 30,000 hackers and security pros. Known for digging into the …
On April 25th and 26th, four Hacknowledge’s Engineers attended to the Insomni’hack conference 2024, one of the largest information security events in Switzerland, at the EPFL (Lausanne, Vaud). Interrogating cybersecurity industry as an introduction During the opening talk, the speaker, Charl Van Der Walt, warned the audience about the risk of using heuristics for the …
SPLUNK PARTNER DAY – 09.04.24 For the 2nd consecutive year, we were thrilled to participate in Splunk’s Zurich offices for the Splunk Partner TechDay. It was an engaging event where we not only delved into a new and exciting Capture The Flag (CTF) game, Splunk’s automation game, but also had the privilege of attending various …
Unlocking Insights: Hacknowledge at Splunk Partner TechDay! Read More »
Introduction From the 19 to the 22 of March, 3 members of our CSIRT Team had the chance to attend the DFRWS EU Conference 2024 held in Zaragoza. The conference showcased cutting-edge research and insights into digital forensics and state-of-the art knowledge in the field. In this blog post, we’ll provide a summary focusing on …
From Zaragoza with Love: Insights from the DFRWS 2024 EU Conference Read More »
Two Hacknowledge teams travelled from Morges to Zurich to represent the company at Splunk EMEA BOTS 2024, learn new things, and last but not least, have fun and meet inspiring people! The first team was composed from Security Engineers and SOC Analysts from the ISSE department who were relatively new to Splunk and the other …
Obfuscation is crucial for malware to evade detection by security tools, prolonging its undetected operation. Top obfuscation techniques include code encryption, polymorphism, metamorphism, dynamic API resolution, and anti-debugging mechanisms. Code obfuscation, such as variable renaming and insertion of meaningless code, adds complexity to hinder analysis. These techniques collectively aim to disguise the true nature of …
EDR/AV Bypass [Part 1] : The Automated Payload Obfuscator “Pinguino” Read More »
Introduction Last week took place Microsoft ignite in Seattle. I was focused on new announcements regarding Sentinel and/or Defender. And the first one who shined in my eyes: the enrichment widget for the UEBA feature in Sentinel🤩. The promise of this new feature is to empowers security analysts to gain deeper insights into entities by …
[Part1] New Microsoft Sentinel’s Enrichment Widget in UEBA Module Read More »
Las Vegas – a city known for its dazzling lights, vibrant entertainment, and now, an annual pilgrimage for cybersecurity enthusiasts from around the world. DEFCON, the world’s largest and one of the most renowned hacker conferences, recently unfolded and Hacknowledge had the opportunity to send two engineers to the event, giving them the chance to delve into the latest trends, innovations, and challenges of the cybersecurity landscape. Our engineers were then obviously thrilled to be a part of this gathering, where knowledge sharing, and hands-on experience take center stage.
In the ever-evolving landscape of cybersecurity, organizations are continuously seeking ways to enhance their defenses against sophisticated threats. Traditional approaches like Red Teaming and Blue Teaming have played crucial roles in identifying vulnerabilities and responding to attacks. However, the Purple Teaming approach has emerged as a powerful methodology that bridges the gap between offensive and …
A cyber security specialist of Swiss Post