Click here to download all references as Bib-File.•
2024-07-23
⋅
Hunt.io
⋅
A Simple Approach to Discovering Oyster Backdoor Infrastructure Broomstick |
2024-07-22
⋅
Censys
⋅
A Beginner’s Guide to Hunting Malicious Open Directories Cobalt Strike Lumma Stealer Vidar |
2024-06-24
⋅
GootLoader Wordpress
⋅
Gootloader’s New Hideout Revealed: The Malware Hunt in WordPress’ Shadows GootLoader |
2024-06-20
⋅
Hunt.io
⋅
Caught in the Act: Uncovering SpyNote in Unexpected Places SpyNote |
2024-06-12
⋅
Symantec
⋅
Ransomware Attackers May Have Used Privilege Escalation Vulnerability as Zero-day Black Basta |
2024-05-16
⋅
Symantec
⋅
Springtail: New Linux Backdoor Added to Toolkit Gomir Kimsuky |
2024-04-09
⋅
Hunt.io
⋅
BlueShell: Four Years On, Still A Formidable Threat BlueShell |
2024-04-02
⋅
Darktrace
⋅
The Early Bird Catches the Worm: Darktrace’s Hunt for Raspberry Robin Raspberry Robin |
2024-03-04
⋅
⋅
Weixin
⋅
Shadow Hunting: Analysis of APT37’s attack activities against South Korea using North Korean political topics RokRAT |
2024-02-27
⋅
BitSight
⋅
Hunting PrivateLoader: The malware behind InstallsKey PPI service PrivateLoader RisePro |
2024-02-09
⋅
Hunt.io
⋅
Tracking ShadowPad Infrastructure Via Non-Standard Certificates ShadowPad |
2024-01-05
⋅
HUNT & HACKETT
⋅
Turkish espionage campaigns in the Netherlands SnappyTCP |
2024-01-04
⋅
Netresec
⋅
Hunting for Cobalt Strike in PCAP Cobalt Strike |
2023-12-19
⋅
Symantec
⋅
Seedworm: Iranian Hackers Target Telecoms Orgs in North and East Africa MuddyC2Go |
2023-12-02
⋅
openhunting.io
⋅
Threat Hunting Malware Infrastructure VBREVSHELL AsyncRAT |
2023-11-30
⋅
Blackberry
⋅
AeroBlade on the Hunt Targeting the U.S. Aerospace Industry AeroBlade |
2023-11-14
⋅
Medium joshuapenny88
⋅
HostingHunter Series: CHANG WAY TECHNOLOGIES CO. LIMITED Hook Hydra Cobalt Strike SectopRAT |
2023-11-13
⋅
Twitter (@malwrhunterteam)
⋅
Tweet on Qilin Linux Locker Qilin |
2023-11-13
⋅
Twitter (@malwrhunterteam)
⋅
Tweet on Linux version of Rhysida Rhysida |
2023-10-26
⋅
Fourcore
⋅
Threat Hunting: Detecting Browser Credential Stealing [T1555.003] LaZagne RedLine Stealer |