Shannon Davis's Blog Posts

Security practitioner, Melbourne, Australia via Seattle, USA.

Automated Clean-up of HAFNIUM Shells and Processes with Splunk Phantom
Security
5 Minute Read

Automated Clean-up of HAFNIUM Shells and Processes with Splunk Phantom

Implement security playbooks to automatically delete Microsoft Exchange Webshells and terminate W3WP spawned processes with Splunk Phantom.
Macros, We Don’t Need No Stinking Macros! — Featuring the New Microsoft O365 Email Add-On
Security
3 Minute Read

Macros, We Don’t Need No Stinking Macros! — Featuring the New Microsoft O365 Email Add-On

Using Microsoft O365 for your emails? Take a look at the new Microsoft O365 Email Add-on for Splunk to start getting in-depth security and non security data from your emails today.