- Xzbot: Notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)
- Bincapz: Enumerate binary capabilities, including malicious behaviors
- When does an old iPhone become unsafe to use?
- macos-ttps-yara: A ruleset to find potentially malicious code in macOS malware samples
- LOLBAS: Living Off the Land Binaries, Scripts and Libraries
- A collection of various SIEM rules relating to malware family groups
- Lolbas: Living Off the Land Binaries, Scripts and Libraries
- Malleable-CS-Profiles: A list of python tools to help create an OPSEC-safe Cobalt Strike profile
- 2023-06-01 // SITUATIONAL AWARENESS // Active Intrusion Campaigns Targeting MoveIt File Transfer Software
- Chinese hacker, Volt Typhoon, breach US critical infrastructure in stealthy attacks
- (Exhaustive) list of remote access tools
- Is this a false positive?
- Cerebro: Scripts and lists to help generate YARA friendly string mutations
- Exploit Outlook CVE-2023-23397 Yara - to detect .msg files exploiting CVE-2023-23397 in Microsoft Outlook
- Exploit Outlook CVE-2023-23397 Yara - to detect .msg files exploiting CVE-2023-23397 in Microsoft Outlook
- GitHub - curated-intel/Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.
- Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence.
- GitHub - Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.
- OneNote Yara rule
- Qu1cksc0pe - All-in-One malware analysis tool
- What are your go-to websites to read cybersecurity news in 2023?
- Days of Yara Master list
- Nighthawk: An Up-and-Coming Pentest Tool Likely to Gain Threat Actor Notice
- New Exchange Zero Day rumours [29th September]
- Company woke up this morning to a ransomware attack. Infected every computer connected to the network and all virtual servers, including a backup server isolated from the main network. Any advice on looking for its entry point?
- Završio/la si TVZ? Još sutra traju prijave za networking događaj Alumnijada 2022 (četvrtak 29.9.2022.)
- What is your opinion about "app packers"? Should Google ban their use?
- [P] I developed a machine learning based malware classification system
- What is the use of an Av when it can be bypassed easily?
- Radi li iko u cybersecurity sektoru?
- protections-artifacts: 1000 Yara rules and 200 endpoint behaviour rules released for free
- Yara4Ida IDA plugin - Crypto/hash/encryption dumper
- Open source tools and DFIR Tryhackme equivalents
- FBI Director Christopher Wray says agency blocked planned cyberattack on children's hospital
- Yara which Detects DLL dropped by Raspberry Robin.
- Where do I find at least somewhat detailed information about famous data breaches/Hacks?
- Python Script EXE detected as virus in VT
- IoCs and YARA rules for Industroyer2
- What are some good resources for staying up to date with current APT developments?
- Russia-Ukraine Cyberwar 2022
- Ukraine curated cyber intel
- GitHub - curated-intel/Ukraine-Cyber-Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. Slava Ukraini. Glory to Ukraine.
- Ukraine Cyber Operations: Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence.
- Curated Intelligence is working with analysts from around the world to provide useful information to organisations in Ukraine looking for additional free threat intelligence. (github/curated-intel)
- Collection of Ukraine related OSINT
- Nvidia Breach
- Detection - Threat Detection Rules (Snort/Sigma/Yara)
- GitHub - JPCERTCC/jpcert-yara: JPCERT/CC public YARA rules repository - detect APT10, APT29, BlackTech, Darkhotel, DragonOK, Lazarus, Tick and others
- GitHub - JPCERTCC/jpcert-yara: JPCERT/CC public YARA rules repository
- StrangerealIntel/Orion: A YARA rules repository continuously updated for monitoring the old and new threats from articles, incidents responses ...