Signature base for my scanner tools
If you have a Yara detection platform, Florian Roth’s rules should detect executables signed with this. https://github.com/Neo23x0/signature-base/blob/master/yara/gen_nvidia_leaked_cert.yar.
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a more popular project.
Evidence of a log4j attack found - Now what?
2 projects | reddit.com/r/cybersecurity | 20 Dec 2021
Yara rule to detect ProxyToken exploitation
1 project | reddit.com/r/blueteamsec | 30 Aug 2021
APT29 / NOBELIUM VirusTotal retro hunt results using 12 newly release Yara rules
2 projects | reddit.com/r/blueteamsec | 30 May 2021
At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software
1 project | reddit.com/r/cybersecurity | 5 Mar 2021
Cybersecurity professionals - what’s your “toolkit”/process to check a desktop PC is clean (or infected), before concluding that a reinstall of the OS is needed?
1 project | reddit.com/r/cybersecurity | 10 Nov 2021