Click here to download all references as Bib-File.•
| 2024-11-12
⋅
Hunt.io
⋅
Targeting Innovation: Sliver C2 and Ligolo-ng Used in Operation Aimed at Y Combinator Sliver |
| 2024-11-05
⋅
Hunt.io
⋅
RunningRAT’s Next Move: From Remote Access to Crypto Mining for Profit Running RAT |
| 2024-10-31
⋅
Hunt.io
⋅
Tricks, Treats, and Threats: Cobalt Strike & the Goblin Lurking in Plain Sight Cobalt Strike |
| 2024-10-24
⋅
Hunt.io
⋅
Rekoobe Backdoor Discovered in Open Directory, Possibly Targeting TradingView Users Rekoobe |
| 2024-10-17
⋅
Hunt.io
⋅
From Warm to Burned: Shedding Light on Updated WarmCookie Infrastructure WarmCookie |
| 2024-10-10
⋅
Hunt.io
⋅
Unmasking Adversary Infrastructure: How Certificates and Redirects Exposed Earth Baxia and PlugX Activity PlugX |
| 2024-10-08
⋅
Hunt.io
⋅
Inside a Cybercriminal’s Server: DDoS Tools, Spyware APKs, and Phishing Pages SpyNote |
| 2024-09-03
⋅
Hunt.io
⋅
ToneShell Backdoor Used to Target Attendees of the IISS Defence Summit TONESHELL |
| 2024-09-01
⋅
Hunt.io
⋅
Echoes of Stargazer Goblin: Analyzing Shared TTPs from an Open Directory Sliver |
| 2024-08-29
⋅
Hunt.io
⋅
Latrodectus Malware Masquerades as AhnLab Security Software to Infect Victims Latrodectus |
| 2024-07-23
⋅
Hunt.io
⋅
A Simple Approach to Discovering Oyster Backdoor Infrastructure Broomstick |
| 2024-06-25
⋅
Hunt.io
⋅
Good Game, Gone Bad: Xeno RAT Spread Via .gg Domains and GitHub XenoRAT |
| 2024-06-20
⋅
Hunt.io
⋅
Caught in the Act: Uncovering SpyNote in Unexpected Places SpyNote |
| 2024-06-06
⋅
Hunt.io
⋅
Tracking LightSpy: Certificates as Windows into Adversary Behavior lightSpy |
| 2024-05-30
⋅
Hunt.io
⋅
SolarMarker: Hunt Insights and Findings solarmarker |
| 2024-04-09
⋅
Hunt.io
⋅
BlueShell: Four Years On, Still A Formidable Threat BlueShell |
| 2024-02-09
⋅
Hunt.io
⋅
Tracking ShadowPad Infrastructure Via Non-Standard Certificates ShadowPad |
| 2024-02-01
⋅
Hunt.io
⋅
The Accidental Malware Repository: Hunting & Collecting Malware Via Open Directories (Part 1) XWorm |