dotnetfile Open Source Python Library: Parsing .NET PE Files Has Never Been Easier 2022-7-29 04:45:7 | 阅读: 22 | 收藏 | unit42.paloaltonetworks.com typeref dotnetfile memberref library cil

Threat Brief: Microsoft Critical Vulnerabilities (CVE-2022-26809, CVE-2022-26923, CVE-2022-26925) 2022-7-28 07:0:42 | 阅读: 57 | 收藏 | unit42.paloaltonetworks.com windows microsoft 26925 26923 20h2

Attackers Move Quickly to Exploit High-Profile Zero Days: Insights From the 2022 Unit 42 Incident Reponse Report 2022-7-26 18:0:49 | 阅读: 28 | 收藏 | unit42.paloaltonetworks.com attackers cloud protections exploited

IAM-Deescalate: An Open Source Tool to Help Users Reduce the Risk of Privilege Escalation 2022-7-25 21:0:10 | 阅读: 36 | 收藏 | unit42.paloaltonetworks.com tn deescalate principals cloud edges

Top CVEs to Patch: Insights from the 2022 Unit 42 Network Threat Trends Research Report 2022-7-21 21:0:10 | 阅读: 32 | 收藏 | unit42.paloaltonetworks.com cves attackers security network

Cloaked Ursa (APT29) Hackers Use Trusted Online Storage Services 2022-7-20 00:10:3 | 阅读: 68 | 收藏 | unit42.paloaltonetworks.com agenda malicious lure payload windows

Unit 42 Threat Group Naming Update 2022-7-19 05:0:51 | 阅读: 8 | 收藏 | unit42.paloaltonetworks.com nation modifier readers

Digium Phones Under Attack: Insight Into the Web Shell Implant 2022-7-15 21:0:4 | 阅读: 14 | 收藏 | unit42.paloaltonetworks.com php asterisk hxxp malicious freepbx

Cobalt Strike Analysis and Tutorial: CS Metadata Encryption and Decryption 2022-7-13 21:0:24 | 阅读: 10 | 收藏 | unit42.paloaltonetworks.com beacon cobalt c2 teamserver encryption

ChromeLoader: New Stubborn Malware Campaign 2022-7-12 21:0:2 | 阅读: 13 | 收藏 | unit42.paloaltonetworks.com powershell chrome payload malicious

When Pentest Tools Go Brutal: Red-Teaming Tool Being Abused by Malicious Actors 2022-7-5 21:0:41 | 阅读: 15 | 收藏 | unit42.paloaltonetworks.com ratel c4 windows memory microsoft

FabricScape: Escaping Service Fabric and Taking Over the Cluster 2022-6-29 07:30:9 | 阅读: 7 | 收藏 | unit42.paloaltonetworks.com fabric microsoft containers clusters malicious

There Is More Than One Way to Sleep: Dive Deep Into the Implementations of API Hammering by Various Malware Families 2022-6-24 21:0:13 | 阅读: 9 | 收藏 | unit42.paloaltonetworks.com hammering zloader wildfire windows injection

Why Are My Junctions Not Followed? Exploring Windows Redirection Trust Mitigation 2022-6-15 06:0:29 | 阅读: 14 | 收藏 | unit42.paloaltonetworks.com redirection junctions junction privileged windows

GALLIUM Expands Targeting Across Telecommunications, Government and Finance Sectors With New PingPull Tool 2022-6-13 18:0:49 | 阅读: 13 | 收藏 | unit42.paloaltonetworks.com pingpull c2 icmp hinitial x07

Exposing HelloXD Ransomware and x4k 2022-6-11 09:0:53 | 阅读: 12 | 收藏 | unit42.paloaltonetworks.com x4k ransomware helloxd l4cky packer

LockBit 2.0: How This RaaS Operates and How to Protect Against It 2022-6-9 21:0:27 | 阅读: 7 | 收藏 | unit42.paloaltonetworks.com lockbit ransomware security xsoar spyware

Threat Brief: Atlassian Confluence Remote Code Execution Vulnerability (CVE-2022-26134) (Updated) 2022-6-4 08:0:48 | 阅读: 25 | 收藏 | unit42.paloaltonetworks.com atlassian cortex 26134 xpanse alto

Understanding REvil: REvil Threat Actors May Have Returned (Updated) 2022-6-4 04:0:0 | 阅读: 12 | 收藏 | unit42.paloaltonetworks.com ransomware victim utilized rutor software

Popping Eagle: How We Leveraged Global Analytics to Discover a Sophisticated Threat Actor 2022-6-3 06:0:40 | 阅读: 20 | 收藏 | unit42.paloaltonetworks.com eagle stage cortex remote popo