Click here to download all references as Bib-File.

Enter keywords to filter the library entries below or Propose new Entry
2023-07-28YouTube (SANS Cyber Defense)Stef Rand
@online{rand:20230728:drop:c252f96, author = {Stef Rand}, title = {{Drop It Like It's Qbot: Separating malicious droppers, loaders, and crypters from their payloads}}, date = {2023-07-28}, organization = {YouTube (SANS Cyber Defense)}, url = {https://www.youtube.com/watch?v=gk7fCC5RiAQ}, language = {English}, urldate = {2023-08-30} } Drop It Like It's Qbot: Separating malicious droppers, loaders, and crypters from their payloads
CloudEyE QakBot
2021-08-02Youtube (Forschungsinstitut Cyber Defense)Alexander Rausch, Konstantin Klinger
@online{rausch:20210802:code:dee039d, author = {Alexander Rausch and Konstantin Klinger}, title = {{The CODE 2021: Workshop presentation and demonstration about CobaltStrike}}, date = {2021-08-02}, organization = {Youtube (Forschungsinstitut Cyber Defense)}, url = {https://www.youtube.com/watch?v=y65hmcLIWDY}, language = {English}, urldate = {2021-08-25} } The CODE 2021: Workshop presentation and demonstration about CobaltStrike
Cobalt Strike
2021-06-28Konrad Adenauer StiftungStefan Soesanto
@online{soesanto:20210628:outward:88ceeac, author = {Stefan Soesanto}, title = {{Outward Defense: Comparing the Cyber Defense Postures of Japan, the Netherlands and the United States in Peace Time}}, date = {2021-06-28}, organization = {Konrad Adenauer Stiftung}, url = {https://www.kas.de/documents/252038/11055681/Mapping+of+cyber+doctrines.pdf/fbbcb8e1-7f57-31e3-a6f4-a0e071beafae}, language = {English}, urldate = {2021-07-02} } Outward Defense: Comparing the Cyber Defense Postures of Japan, the Netherlands and the United States in Peace Time
2021-01-20MicrosoftMicrosoft 365 Defender Research Team, Microsoft Threat Intelligence Center (MSTIC), Microsoft Cyber Defense Operations Center (CDOC)
@online{team:20210120:deep:1cc0551, author = {Microsoft 365 Defender Research Team and Microsoft Threat Intelligence Center (MSTIC) and Microsoft Cyber Defense Operations Center (CDOC)}, title = {{Deep dive into the Solorigate second-stage activation: From SUNBURST to TEARDROP and Raindrop}}, date = {2021-01-20}, organization = {Microsoft}, url = {https://www.microsoft.com/security/blog/2021/01/20/deep-dive-into-the-solorigate-second-stage-activation-from-sunburst-to-teardrop-and-raindrop/}, language = {English}, urldate = {2021-01-21} } Deep dive into the Solorigate second-stage activation: From SUNBURST to TEARDROP and Raindrop
Cobalt Strike SUNBURST TEARDROP
2020-10-28AccentureCyber Defense
@online{defense:20201028:turla:6f32714, author = {Cyber Defense}, title = {{Turla uses HyperStack, Carbon, and Kazuar to compromise government entity}}, date = {2020-10-28}, organization = {Accenture}, url = {https://www.accenture.com/us-en/blogs/cyber-defense/turla-belugasturgeon-compromises-government-entity}, language = {English}, urldate = {2020-10-29} } Turla uses HyperStack, Carbon, and Kazuar to compromise government entity
Cobra Carbon System Kazuar TurlaRPC Turla SilentMoon
2016VerintPeikan Tsung
@techreport{tsung:2016:intelligencedriven:3fe2a67, author = {Peikan Tsung}, title = {{An Intelligence-Driven Approach to Cyber Defense}}, date = {2016}, institution = {Verint}, url = {https://hitcon.org/2016/pacific/0composition/pdf/1202/1202%20R0%200930%20an%20intelligance-driven%20approach%20to%20cyber%20defense.pdf}, language = {English}, urldate = {2021-06-21} } An Intelligence-Driven Approach to Cyber Defense
Gelsemium