Click here to download all references as Bib-File.•
2021-09-24
⋅
Yoroi
⋅
Hunting the LockBit Gang's Exfiltration Infrastructures LockBit StealBit |
2021-09-23
⋅
NCC Group
⋅
Detecting and Hunting for the PetitPotam NTLM Relay Attack |
2021-09-18
⋅
Microsoft
⋅
Hunting for OMI Vulnerability Exploitation with Azure Sentinel Mirai |
2021-09-17
⋅
CrowdStrike
⋅
Falcon OverWatch Hunts Down Adversaries Where They Hide BazarBackdoor Cobalt Strike |
2021-09-16
⋅
Medium Shabarkin
⋅
Pointer: Hunting Cobalt Strike globally Cobalt Strike |
2021-09-14
⋅
CrowdStrike
⋅
Big Game Hunting TTPs Continue to Shift After DarkSide Pipeline Attack BlackMatter DarkSide REvil Avaddon BlackMatter Clop Conti CryptoLocker DarkSide DoppelPaymer Hades REvil |
2021-09-09
⋅
Symantec
⋅
Grayfly: Chinese Threat Actor Uses Newly-discovered Sidewalk Malware CROSSWALK MimiKatz SideWalk |
2021-09-08
⋅
CrowdStrike
⋅
2021 Threat Hunting Report |
2021-09-07
⋅
Medium michaelkoczwara
⋅
Cobalt Strike C2 Hunting with Shodan Cobalt Strike |
2021-09-01
⋅
YouTube (Black Hat)
⋅
Threat Hunting in Active Directory Environment |
2021-09-01
⋅
SentinelOne
⋅
WatchTower | August 2021 TLP: WHITE | Intelligence-Driven Threat Hunting |
2021-08-30
⋅
CrowdStrike
⋅
CARBON SPIDER Embraces Big Game Hunting, Part 1 Bateleur Griffon Carbanak DarkSide JSSLoader PILLOWMINT REvil |
2021-08-25
⋅
Twitter (@malwrhunterteam)
⋅
Tweet on Hydra-variant with Dutch ransom note Nitro |
2021-08-23
⋅
Youtube (SANS Digital Forensics and Incident Response)
⋅
Keynote: Cobalt Strike Threat Hunting Cobalt Strike |
2021-08-23
⋅
Intel 471
⋅
Here's how to guard your enterprise against ShinyHunters |
2021-08-20
⋅
Symantec
⋅
LockFile: Ransomware Uses PetitPotam Exploit to Compromise Windows Domain Controllers LockFile |
2021-08-19
⋅
cyble
⋅
ShinyHunters Selling Alleged AT&T Database with 70 million SSN and Date of birth; AT&T Denies it originated from their systems |
2021-08-19
⋅
Huntress Labs
⋅
Microsoft Exchange Servers Still Vulnerable to ProxyShell Exploit |
2021-08-17
⋅
Medium michaelkoczwara
⋅
Cobalt Strike Hunting — DLL Hijacking/Attack Analysis Cobalt Strike |
2021-08-17
⋅
Advanced Intelligence
⋅
Hunting for Corporate Insurance Policies: Indicators of [Ransom] Exfiltration Cobalt Strike Conti |