Mhamby

8th place

2100 points

Awards

Solves

Challenge	Category	Value	Time
1 - Discover	0 - Section Unlocks	50
1.1 - Setting the Stage	1 - Discover	50
1.2 - Messing with Time	1 - Discover	50
1.3 - Choose index pattern	1 - Discover	50
1.4 - Sort by field	1 - Discover	50
1.6 - IDS Data	1 - Discover	50
1.7 - Zeek and you shall find	1 - Discover	50
1.8 - ALL the logs	1 - Discover	50
1.5 - Open document	1 - Discover	50
2 - Visualizations	0 - Section Unlocks	50
2.1 - Highest Client Byte Count	2 - Visualizations	50
2.2 - Client Peak Time	2 - Visualizations	50
2.3 - Highest Server Byte Count	2 - Visualizations	50
2.4 - Server Peak Time	2 - Visualizations	50
3 - Lens	0 - Section Unlocks	50
3.1 - Server port	3 - Lens	50
3.2 - Record Count	3 - Lens	50
3.3 - Summary data	3 - Lens	50
3.4 - Record spike	3 - Lens	50
4 - Dashboards	0 - Section Unlocks	50
4.2 - Rush hour	4 - Dashboards	50
4.3 - Out of the norm	4 - Dashboards	50
4.4 - Connection count	4 - Dashboards	50
5 - Security App - Explore	0 - Section Unlocks	50
5.2 - Mandatory	5 - Security App - Explore	50
5.3 - Hosts	5 - Security App - Explore	50
5.4 - Who is making the most noise?	5 - Security App - Explore	50
5.6 - Which tool?	5 - Security App - Explore	50
5.7 - Dynamic	5 - Security App - Explore	50
5.10 - But Is It Local?	5 - Security App - Explore	50
5.9 - Walking the path	5 - Security App - Explore	50
6 - Security App - Detection Rules	0 - Section Unlocks	50
6.1 - Query types	6 - Security App - Detection Rules	50
6.2 - Rule schedule	6 - Security App - Detection Rules	50
6.3 - Sequencing	6 - Security App - Detection Rules	50
5.8 - Top domain	5 - Security App - Explore	50
7 - Security App - Alerts	0 - Section Unlocks	50
7.1 - Get the message?	7 - Security App - Alerts	50
7.2 - Abnormal User Agent	7 - Security App - Alerts	50
5.5 - Network	5 - Security App - Explore	50
8 - Security App - Timelines	0 - Section Unlocks	50
Hunt Training Gate	0 - Section Unlocks	50