TryHackMe Boogeyman 3 write-up covering SOC investigation, PowerShell activity, credential discovery, lateral movement, hash dumping, DCSync activity, and ransomware execution analysis using Elastic/Kibana logs.
kibana powershell incident-response dfir cybersecurity ransomware elastic soc mimikatz blue-team lateral-movement tryhackme dcsync windows-forensics boogeyman-3
-
Updated
May 16, 2026