An Indicator of Compromise (IoC) is a piece of digital forensics that suggests that a computer resource has been breached.
IoC monitoring is a reactive monitoring technique, meaning that if an IoC is observed, the compromise has almost certainly already occurred.
Links to this note
- attribution-steffens2020
- Main Index
- sysrvbotnet-imperva2024
- tricephalichellkeeper-pourcelot2022
- anatomyofreallinuxintrusion-alonso2016
- linenoise-phrack71-2024
- trackingteamtnt-fiser2021
- unpacking diicot-tikochinski2024
- unveiling wolfsbane-sperka2024
- skuld-taniumcti2023
- chaos-lang2023
- Main Index - I
- Moonlight Maze samples
- shell function as userland rootkit
- Skidmap Indicators of Compromise (IoCs)