Volt Typhoon
2025-10-28
Volt Typhoon aka VANGUARD PANDA is a China-nexus cyberespionage-focused APT group active since at least mid-2021. ... Read More
Windows Server Update Service
2025-10-28
Windows Server Update Service (WSUS) is software that provides Microsoft product updates to a set of Windows hosts. ... Read More
analyzingsshdinjector-apvrille2025
2025-10-26
Analyzing ELF/Sshdinjector.A!tr with a Human and Artificial Analyst By Axelle Apvrille February 04, 2025 ... Read More
evolutionlinuxbinariescloudoperations-quist2025
2025-10-26
The Evolution of Linux Binaries in Targeted Cloud Operations By: Nathaniel Quist, Bill Batchelor June 10, 2025 ... Read More
ivantipostexploitlateralmovementcasestudy-lin2024
2025-10-26
Cutting Edge, Part 4: Ivanti Connect Secure VPN Post-Exploitation Lateral Movement Case Studies by: Matt Lin, Austin Larsen, John Wolfram, Ashley ... Read More
ShellBot
2025-10-26
ShellBot, also known as PerlBot, is Linux malware developed in Perl used for DDoS. ShellBot uses IRC protocol for command and control. Read More
Ziggy StarTux
2025-10-26
Ziggy StarTux is a variant of Kaiten, Linux malware used primarily for DDoS attacks, using IRC for command and control. Read More
auditinggithubsshkeyquality
2025-10-25
Auditing GitHub users’ SSH key quality By Ben Cox https://blog.benjojo.co.uk/post/auditing-github-users-keys Notes SSH SSH key key revocation GitHub ... Read More
tsunamiddosmalwaressh2023
2025-10-25
Tsunami DDoS Malware Distributed to Linux SSH Servers Jun 12 2023 AhnLab Security https://asec.ahnlab.com/en/54647/ Notes AhnLab Security AhnLab ... Read More
steelmanning
2025-09-03
Steelmanning is the opposite of a straw man agrument. The debator attacks the strongest or stronger arguments against their stance rather than ... Read More