> For the complete documentation index, see [llms.txt](https://topgeartraining.gitbook.io/focus2learn/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://topgeartraining.gitbook.io/focus2learn/log-analysis/random-topics.md).

# Random Topics

### APT(Advanced Persistent Threats) <a href="#d9d6" id="d9d6"></a>

A: Targeted, Coordinated, Purposeful\
P: Month after Month, Year after Year\
T: Person(s) with Intent, Opportunity, and Capability

### **IOCs(Indicators of compromise)** <a href="#abc5" id="abc5"></a>

These are forensic artifacts of an intrusion that can be identified on a host or network.\
**Type of IOCs**

* Atomic
* Computed
* Behavioral

**Some key of IOCs to monitor:**

* Unusual outbound Network Traffic
* Anomalies in Privileged user account activity
* Geographical Irregularities
* Other Log-in red flags
* Swells in Database read volume
* HTML response size
* Large numbers of requests for the same file
* Mismatched Port-application traffic
* Suspicious registry or system file changes
* DNS request anomalies
