YARA Guidance

Open-source YARA projects categorized as Guidance | Edit details
Related topics: #mitigation #webshell #webshells

YARA Guidance Projects

  • Mitigating-Web-Shells

    Guidance for mitigation web shells. #nsacyber

    Project mention: Mass exploitation of on-prem Exchange servers :( | reddit.com/r/msp | 2021-03-03

    There is likely a Cobalt Strike BEACON acting as C2 now even if you've patched. I recommend full incident response mode, probably want to isolate the server. Run an integrity check against a known good config with WinDiff or NSA's dirChecker to find other anomolies. https://github.com/nsacyber/Mitigating-Web-Shells

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2021-03-03.


Project Stars
1 Mitigating-Web-Shells 823
Find remote jobs at our new job board 99remotejobs.com. There are 30 new remote jobs listed recently.
Are you hiring? Post a new remote job listing for free.
Less time debugging, more time building
Scout APM allows you to find and fix performance issues with no hassle. Now with error monitoring and external services monitoring, Scout is a developer's best friend when it comes to application development.