Mastodawn

ShadowHound is a PowerShell tool designed for mapping Active Directory environments without using known malicious binaries. It utilizes legitimate PowerShell modules for data collection through two…

Security Friends' Research Blog

Nikahverse Feb 26, 2025

SANS Internet Storm Center - SANS.edu - Go Sentinels!Feb 24, 2025

Unfurl v2025.02 released https://isc.sans.edu/diary/31716

Nikahverse Feb 26, 2025

SANS Internet Storm Center - SANS.edu - Go Sentinels!Feb 26, 2025

Malware Source Servers: The Threat of Attackers Using Ephemeral Ports as Service Ports to Upload Dat https://isc.sans.edu/diary/31710

Nikahverse Jun 28, 2024

Show thread

Halligan Jun 27, 2024

@miri

https://github.com/redcanaryco/atomic-red-team/wiki/

Home

Small and highly portable detection tests based on MITRE's ATT&CK. - redcanaryco/atomic-red-team

GitHub

Nikahverse Jun 21, 2024

RedPacket Security Jun 1, 2024

Sliver C2 Detected - 172[.]236[.]71[.]134:31337 - https://www.redpacketsecurity.com/sliver-c2-detected-172-236-71-134-port-31337/

#SliverC2 #OSINT #ThreatIntel

Sliver C2 Detected - 172[.]236[.]71[.]134:31337 - RedPacket Security

Covenant C2 Detection Alerts

RedPacket Security

Nikahverse Apr 24, 2024

Show thread

RevK

Dec 1, 2023

@nikahverse last on is cunning…

Nikahverse Apr 24, 2024

Show thread

Rairii Dec 1, 2023

@nikahverse for mysql and derivatives I always liked '||1-- - which tended to bypass a lot of WAFs