And maybe some cobalt strike info for the blue team
EnableSSHforRoot - Enabling ssh in Kali
FindAptNamedPipes - How to find APTs using DNS and SMB with powershell
PCAPS of Cobalt Strike DNS and SMB beacons - Blue teams, how would you find this? What tools will help you? cobalt_dns.pcapng cobalt_smb_pip.pcapng
Diagrams to go with PCAPS image001.png image002.png