Soc.4.mp4 < macOS >

Note the initial risk level assigned to the alert. Tools (Platforms Used)

Mention the specific tools used for the investigation, such as Splunk for SIEM, Snort for IDS, or CyberChef for decoding malicious strings. soc.4.mp4

If the "mp4" file contained hidden macros or shellcode, explain how you extracted the true command (e.g., XOR-based obfuscation ). Outcome (Findings & Recommendations) Note the initial risk level assigned to the alert

Recommendations for future prevention, like patching specific vulnerabilities . such as Splunk for SIEM

Actions taken, such as isolating the host or resetting credentials.

Inspecting the affected hostname and user.

Record when the event occurred to correlate logs.