Click here to download all references as Bib-File.•
2021-03-02
⋅
Github (microsoft)
⋅
Microsoft-365-Defender-Hunting-Queries for hunting Gootkit malware delivery and C2 GootKit |
2021-02-24
⋅
Github (AmnestyTech)
⋅
Overview of Ocean Lotus Samples used to target Vietnamese Human Rights Defenders OceanLotus Cobalt Strike KerrDown |
2021-02-19
⋅
K7 Security
⋅
GitHub – Home to AsyncRAT Backdoor AsyncRAT |
2021-02-17
⋅
cyber00011011.github.io
⋅
Understand Shellcode with CyberChef |
2021-02-01
⋅
pkb1s.github.io
⋅
Relay Attacks via Cobalt Strike Beacons Cobalt Strike |
2021-01-31
⋅
s3cur3th1ssh1t.github.io
⋅
A tale of EDR bypass methods |
2021-01-22
⋅
Github (Finch4)
⋅
Malware Analysis Report No2 BitRAT |
2021-01-19
⋅
Github (fireeye)
⋅
Mandiant Azure AD Investigator: Focusing on UNC2452 TTPs SUNBURST |
2021-01-13
⋅
Github (Mave12)
⋅
Github Repository: BlackNET 3.7.0.1 BlackNET RAT |
2021-01-09
⋅
Github (f0wl)
⋅
ezuri_unpack |
2021-01-07
⋅
Github (hvs-consulting)
⋅
Lazarus / APT37 IOCs Lazarus Group |
2021-01-06
⋅
Github (SentinelLabs)
⋅
SolarWinds_Countermeasures SUNBURST |
2021-01-01
⋅
⋅
Github (WBGlIl)
⋅
A book on cobaltstrike Cobalt Strike |
2020-12-27
⋅
Github (arsium)
⋅
HorusEyesRat HorusEyes RAT |
2020-12-21
⋅
US Court of Appeals for the Ninth Court
⋅
Case: 20-16408: WhatsApp et al. vs NSO Group |
2020-12-16
⋅
Github (RedDrip7)
⋅
A script to decode SUNBURST DGA domain SUNBURST |
2020-12-15
⋅
Github (itsreallynick)
⋅
A quick note from Nick Carr on COSMICGALE and SUPERNOVA that those are unrelated to UC2452 intrusion campaign SUPERNOVA |
2020-12-15
⋅
Github (Dump-GUY)
⋅
Reverse engineering KPOT v2.0 Stealer KPOT Stealer |
2020-12-15
⋅
Github (sophos-cybersecurity)
⋅
solarwinds-threathunt Cobalt Strike SUNBURST |
2020-12-13
⋅
Github (fireeye)
⋅
SUNBURST Countermeasures SUNBURST SUPERNOVA TEARDROP UNC2452 |