chirp

About this tag
The chirp tag on WindowsForum.com covers the CISA Hunt and Incident Response Program (CHIRP) tool, a forensics collection utility developed by CISA to help network defenders detect indicators of compromise (IOCs). Content focuses on using CHIRP to identify post-compromise threat activity, particularly in relation to advanced persistent threat (APT) actors compromising SolarWinds Orion products and Microsoft 365/Azure environments. Discussions include deployment, IOC detection, and integration with incident response workflows for enterprise IT and security professionals.
  1. News

    VIDEO AA21-077A: Detecting Post-Compromise Threat Activity Using the CHIRP IOC Detection Tool

    Original release date: March 18, 2021 Summary This Alert announces the CISA Hunt and Incident Response Program (CHIRP) tool. CHIRP is a forensics collection tool that CISA developed to help network defenders find indicators of compromise (IOCs) associated with activity detailed in the following...
Back
Top