🕵️Implementing a Hypothesis-Driven Threat Hunt for TOR Activity Detecting, investigating, and responding to unauthorized anonymous browsing using endpoint telemetry. Executive Summary This case study documents a hypothesis-driven threat hunt conducted to identify unauthorized TOR browser usage within an enterprise environment. Management suspected that employees were bypassing network controls due to unusual encrypted traffic patterns andContinue reading “🔐Threat Hunting Case Study: Unauthorized TOR Usage”
Forge Shield Tech 