Hosts making DNS queries to malicious site. How to dig deeper and find source?

This page summarizes the projects mentioned and recommended in the original post on reddit.com/r/AskNetsec

Our great sponsors
  • Scout APM - Truly a developer’s best friend
  • Zigi - Close all those tabs. Zigi will handle your updates.
  • SonarLint - Clean code begins in your IDE with SonarLint
  • InfluxDB - Build time-series-based applications quickly and at scale.
  • sysmon-config

    Sysmon configuration file template with default high-quality event tracing

    I'd install sysmon if it is not already present on the infected machines, with Swift's config or Olaf's config file.

  • sysmon-modular

    A repository of sysmon configuration modules

    I'd install sysmon if it is not already present on the infected machines, with Swift's config or Olaf's config file.

  • Scout APM

    Truly a developer’s best friend. Scout APM is great for developers who want to find and fix performance issues in their applications. With Scout, we'll take care of the bugs so you can focus on building great things 🚀.

NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.

Suggest a related project

Related posts