description: The following analytic identifies modifications to registry keys commonly used for persistence mechanisms. It leverages data from endpoint detection sources like Sysmon or Carbon Black, ...
Non-Docker local environment setup (build and run directly on your host machine). Docker-based environment setup (recommended for reproducibility). You can choose either option according to your needs ...