GitHub - outflanknl/C2-Tool-Collection: A collection of tools which integrate with Cobalt Strike (and possibly other C2 frameworks) through BOF and reflective DLL loading techniques.
https://github.com/outflanknl/C2-Tool-Collection
Hooking System Calls in Windows 11 22H2 like Avast Antivirus. Research, analysis and bypass | the-deniss.github.io
https://the-deniss.github.io/posts/2022/12/08/hooking-system-calls-in-windows-11-22h2-like-avast-antivirus.html
MuddyWater Hackers Target Asian and Middle East Countries with Updated Tactics
https://thehackernews.com/2022/12/muddywater-hackers-target-asian-and.html
APT Cloud Atlas: Unbroken Threat
https://www.ptsecurity.com/ww-en/analytics/pt-esc-threat-intelligence/apt-cloud-atlas-unbroken-threat/
Zero Day Initiative on Twitter: "Another successful exploit in the SOHO SMASHUP category @ #P2OToronto #Pwn2Own https://t.co/8Qty12wmU1" / Twitter
https://twitter.com/thezdi/status/1601019623893127168
Project Zero: Exploiting CVE-2022-42703 - Bringing back the stack attack
https://googleprojectzero.blogspot.com/2022/12/exploiting-CVE-2022-42703-bringing-back-the-stack-attack.html
Members of Twitter’s Trust & Safety Council Resign in Protest Against Elon Musk's 'Safety' Messages to Date - NetFamilyNews.org
https://www.netfamilynews.org/members-of-twitters-trust-safety-council-resign-in-protest-against-elon-musks-safety-messages-to-date
US Health Dept warns of Royal Ransomware targeting healthcare
https://www.bleepingcomputer.com/news/security/us-health-dept-warns-of-royal-ransomware-targeting-healthcare/
SilentMoonwalk: Implementing a dynamic Call Stack Spoofer | CyberSecurity Blog
https://klezvirus.github.io/RedTeaming/AV_Evasion/StackSpoofing/
Examining Malware Distribution Behaviours
https://arb0ur.substack.com/p/examining-malware-distribution-behaviours
Sniffing SSH Passwords | The Network Logician
https://networklogician.com/2021/04/17/sniffing-ssh-passwords/
Breaking the silence - Recent Truebot activity
https://blog.talosintelligence.com/breaking-the-silence-recent-truebot-activity/
Meeting the “Ministrer” | Fortinet Blog
https://www.fortinet.com/blog/threat-research/konni-rat-phishing-email-deploying-malware
针对巴以地区围绕卡塔尔世界杯的攻击活动
https://mp-weixin-qq-com.translate.goog/s/48Atw1b6Oe7A-vlsKHYWwg?_x_tr_sl=auto&_x_tr_tl=en&_x_tr_hl=en&_x_tr_pto=wapp
New MuddyWater Threat: Old Kitten; New Tricks | Deep Instinct
https://www.deepinstinct.com/blog/new-muddywater-threat-old-kitten-new-tricks
Cisco discloses high-severity IP phone bug with exploit code
https://www.bleepingcomputer.com/news/security/cisco-discloses-high-severity-ip-phone-bug-with-exploit-code/
针对巴以地区围绕卡塔尔世界杯的攻击活动
https://mp.weixin.qq.com/s/48Atw1b6Oe7A-vlsKHYWwg
탈륨 조직, 개성공단 근무자 연구와 아태 연구 논문 투고로 사칭한 APT 공격 주의
https://blog.alyac.co.kr/3228
An Overview of MS-RPC and Its Security Mechanisms | Akamai
https://www.akamai.com/blog/security-research/msrpc-security-mechanisms
What you need to know about OpenAI's new ChatGPT bot - and how it affects your security | SANS Webinar
https://www.sans.org/u/1ofA