APT29 / NOBELIUM VirusTotal retro hunt results using 12 newly release Yara rules

This page summarizes the projects mentioned and recommended in the original post on /r/blueteamsec
#Signature #yara-rules #Yara #IoC #Scanner

Our great sponsors
  • SonarLint - Clean code begins in your IDE with SonarLint
  • InfluxDB - Collect and Analyze Billions of Data Points in Real Time
  • Mergify - Tired of breaking your main and manually rebasing outdated pull requests?
Our great sponsors

  • signature-base

    YARA signature and IOC database for my scanners and tools

    Rules https://github.com/Neo23x0/signature-base/blob/master/yara/apt_apt29_nobelium_may21.yar

  • Loki

    Loki - Simple IOC and YARA Scanner (by Neo23x0)

  • SonarLint

    Clean code begins in your IDE with SonarLint. Up your coding game and discover issues early. SonarLint is a free plugin that helps you find & fix bugs and security issues from the moment you start writing code. Install from your favorite IDE marketplace today.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts