Click here to download all references as Bib-File.•
| 2021-01-09
⋅
Github (f0wl)
⋅
ezuri_unpack |
| 2021-01-07
⋅
Github (hvs-consulting)
⋅
Lazarus / APT37 IOCs Lazarus Group |
| 2021-01-06
⋅
Github (SentinelLabs)
⋅
SolarWinds_Countermeasures SUNBURST |
| 2021-01-01
⋅
⋅
Github (WBGlIl)
⋅
A book on cobaltstrike Cobalt Strike |
| 2020-12-27
⋅
Github (arsium)
⋅
HorusEyesRat HorusEyes RAT |
| 2020-12-21
⋅
US Court of Appeals for the Ninth Court
⋅
Case: 20-16408: WhatsApp et al. vs NSO Group |
| 2020-12-16
⋅
Github (RedDrip7)
⋅
A script to decode SUNBURST DGA domain SUNBURST |
| 2020-12-15
⋅
Github (itsreallynick)
⋅
A quick note from Nick Carr on COSMICGALE and SUPERNOVA that those are unrelated to UC2452 intrusion campaign SUPERNOVA |
| 2020-12-15
⋅
Github (Dump-GUY)
⋅
Reverse engineering KPOT v2.0 Stealer KPOT Stealer |
| 2020-12-15
⋅
Github (sophos-cybersecurity)
⋅
solarwinds-threathunt Cobalt Strike SUNBURST |
| 2020-12-13
⋅
Github (fireeye)
⋅
SUNBURST Countermeasures SUNBURST SUPERNOVA TEARDROP UNC2452 |
| 2020-12-12
⋅
Github (cdong1012)
⋅
ContiUnpacker: An automatic unpacker for Conti rasnomware Conti |
| 2020-12-09
⋅
Github (fireeye)
⋅
Fireeye RED TEAM tool countermeasures |
| 2020-11-09
⋅
Trend Micro
⋅
An Old Joker’s New Tricks: Using Github To Hide Its Payload Joker |
| 2020-11-07
⋅
Github (guitmz)
⋅
Linux.Midrashim Midrashim |
| 2020-11-05
⋅
Github (scythe-io)
⋅
Ryuk Adversary Emulation Plan Ryuk |
| 2020-11-05
⋅
Juniper
⋅
Gitpaste-12: a new worming botnet with reverse shell capability spreading via GitHub and Pastebin Gitpaste-12 |
| 2020-10-30
⋅
Github (ThreatConnect-Inc)
⋅
UNC 1878 Indicators from Threatconnect BazarBackdoor Cobalt Strike Ryuk |
| 2020-10-29
⋅
GitHub (LimerBoy)
⋅
StormKitty StormKittyRAT |
| 2020-10-29
⋅
Github (Swisscom)
⋅
List of CobaltStrike C2's used by RYUK Cobalt Strike |