A real-world PUP incident response case study following the PICERL framework, with PowerShell triage scripts and Sigma detection rules.
-
Updated
Jun 28, 2026 - HTML
A real-world PUP incident response case study following the PICERL framework, with PowerShell triage scripts and Sigma detection rules.
Complete incident response framework implementing the PICERL model - severity classification, evidence collection, containment, eradication, recovery, and lessons learned
Hands-on incident response simulation — SSH brute force, post-compromise backdoor, PICERL methodology, MITRE ATT&CK mapped, ELK Stack SIEM detection
SOC incident response simulation demonstrating detection, analysis, containment, and recovery of a malware-based security incident.
Add a description, image, and links to the picerl topic page so that developers can more easily learn about it.
To associate your repository with the picerl topic, visit your repo's landing page and select "manage topics."