blueteamsec

623 readers
20 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat
listing: all - local
226
2
Konni’s New Arsenal: Unmasking GSRAT in North Korea-linked APT Operation (jsac.jpcert.or.jp)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
227
25
A LinkedIn Job Offer Tried to Install Malware on My Machine (codecrank.ai)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
228
5
Windows event logs were cleared, but resurrected in another file! (dfir.ru)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
229
3
OpenMalleableC2: Open Source Implementation of Cobalt Strike's Malleable C2 (github.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
230
3
chronix: A self-hosted, real-time collaborative workspace for offensive security assessments. (github.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
231
2
cleanldap: BOF to perform stealthy LDAP queries over AD WS (github.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
232
3
Love? Actually: Fake dating app used as lure in targeted spyware campaign in Pakistan (www.welivesecurity.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
233
2
Malware Analysis Space: Revisiting MoonBounce: Research Notes (malwareanalysisspace.blogspot.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
234
2
Threat Bulletin: Critical eScan Supply Chain Compromise | Malicious updates were distributed through eScan’s legitimate update infrastructure, resulting in the deployment of multi-stage malware (www.morphisec.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
235
2
Can’t stop, won’t stop: TA584 innovates initial access (www.proofpoint.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
236
2
Disrupting the World's Largest Residential Proxy Network (cloud.google.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
237
1
Threat Intelligence Dossier: TOXICSNAKE (themalwarefiles.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
238
4
How Computer Warfare Is Becoming Part of the Pentagon’s Arsenal - The military tested a new approach in Venezuela and during strikes on Iranian nuclear facilities. (www.nytimes.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
239
1
From XLoader to Phantom Stealer: A DHL-Themed multi-stage Infection Chain (medium.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
240
11
How to prepare for and plan your organisation's response to severe cyber threat: a guide for CNI (www.ncsc.gov.uk)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
241
3
ELECTRUM: Cyber Attack on Poland's Electric System 2025 (hub.dragos.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
242
2
OpenSSL Security Advisory (corrected - added CVE-2026-22795 and CVE-2026-22796) (groups.google.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
243
1
GOGITTER, GITSHELLPAD, and GOSHELL Analysis | APT Attacks Target Indian Government Using GOGITTER, GITSHELLPAD, and GOSHELL (www.zscaler.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
244
1
Code Blue 2024 conference videos (www.youtube.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
245
1
Exfil Out&Look for Logs: Weaponizing Outlook Add-ins for Zero-Trace Email Exfiltration (www.varonis.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
246
1
Microsoft Office Security Feature Bypass Vulnerability - "Exploitation Detected" (msrc.microsoft.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
247
0
HoneyMyte updates CoolClient backdoor, uses new data stealing tools (securelist.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
248
1
Novel Fake CAPTCHA Chain Delivering Amatera Stealer (blackpointcyber.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
249
3
Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088 (cloud.google.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
250
3
Saudi dissident awarded $4.1 million by UK court for hacking, assault 'by Saudi Arabia' (www.reuters.com)
submitted 2 weeks ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›