Click here to download all references as Bib-File.•
| 2021-10-26
⋅
Github (vc0RExor)
⋅
Babuk Ransomware Babuk |
| 2021-10-04
⋅
Github (OALabs)
⋅
Reverse engineered the Hancitor DLL and built a static config extractor Hancitor |
| 2021-10-03
⋅
Github (0xjxd)
⋅
SquirrelWaffle - From Maldoc to Cobalt Strike Cobalt Strike Squirrelwaffle |
| 2021-09-08
⋅
Juniper
⋅
Aggah Malware Campaign Expands to Zendesk and GitHub to Host Its Malware Agent Tesla |
| 2021-08-25
⋅
Github (StrangerealIntel)
⋅
FIN7 still active |
| 2021-07-23
⋅
Github (Lastline-Inc)
⋅
YARA rules, IOCs and Scripts for extracting IcedID C2s IcedID |
| 2021-07-18
⋅
Github (mvt-project)
⋅
Mobile Verification Toolkit |
| 2021-07-18
⋅
Github (AmnestyTech)
⋅
NSO Group Pegasus Indicator of Compromise Chrysaor |
| 2021-07-05
⋅
Github (f0wl)
⋅
REvil Linux Configuration Extractor REvil |
| 2021-07-02
⋅
Github (fwosar)
⋅
REvil configuration dump used in Kaseya attack REvil |
| 2021-06-28
⋅
Github (Finch4)
⋅
Delta Ransomware Analysis |
| 2021-06-04
⋅
Github (NightfallGT)
⋅
MercurialGrabber Github Repository MercurialGrabber |
| 2021-06-01
⋅
Github (Albocoder)
⋅
Inside commercial malware sandboxes |
| 2021-05-20
⋅
Github (microsoft)
⋅
Microsoft 365 Defender Hunting Queries for hunting multiple threat actors' TTPs and malwares STRRAT OceanLotus BabyShark Elise Revenge RAT WastedLocker Zebrocy |
| 2021-05-18
⋅
Github (Finch4)
⋅
Analysis of MountLocker Mount Locker |
| 2021-05-17
⋅
Github (telekom-security)
⋅
icedid_analysis IcedID |
| 2021-04-25
⋅
Nightwatch Cybersecurity
⋅
Supply Chain Attacks via GitHub.com Releases |
| 2021-04-22
⋅
Github (@cecio)
⋅
EMOTET: a State-Machine reversing exercise Emotet |
| 2021-04-20
⋅
Github (fireeye)
⋅
FireEye Mandiant PulseSecure Exploitation Countermeasures |
| 2021-04-12
⋅
Github (NightfallGT)
⋅
Nitro Ransomware - Proof of Concept Nitro |