Our great sponsors
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
Any iOS device backup, including older ones, can be scanned for IoC (Indicator of Compromise) related to patched CVEs. If you also own a macOS device, your iOS device can be hardened via the free Apple Configurator app for local MDM policy, e.g. disable AirDrop, whitelist WiFi without auto-join, disallow USB devices when locked. If the device is compromised, it can be restored after backup, erase, DFU and iOS reinstall.
https://docs.mvt.re/en/latest/ios/methodology/
https://www.amnesty.org/en/latest/research/2021/07/forensic-...
https://github.com/citizenlab/malware-indicators
https://github.com/sroberts/awesome-iocs
Related posts
- Xzbot: Notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)
- Bincapz: Enumerate binary capabilities, including malicious behaviors
- macos-ttps-yara: A ruleset to find potentially malicious code in macOS malware samples
- LOLBAS: Living Off the Land Binaries, Scripts and Libraries
- A collection of various SIEM rules relating to malware family groups