blueteamsec

629 readers
35 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat
listing: all - local
826
1
Cyber deception trials: what we’ve learned so far (www.ncsc.gov.uk)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
827
3
PeerBlight Linux Backdoor Exploits React2Shell CVE-2025-55182 (www.huntress.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
828
8
Senior Manager for Government Contractor Charged in Cybersecurity Fraud Scheme (www.justice.gov)
submitted 2 months ago by digicat to c/blueteamsec
1 comments fedilink
829
3
Justice Department Announces Actions to Combat Two Russian State-Sponsored Cyber Criminal Hacking Groups (www.justice.gov)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
830
2
OGhidra: OGhidra bridges Large Language Models (LLMs) via Ollama with the Ghidra reverse engineering platform, enabling AI-driven binary analysis through natural language. (github.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
831
2
AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows (www.trendmicro.com)
submitted 2 months ago by digicat to c/blueteamsec
1 comments fedilink
832
1
CVE-2025-55182 Exploitation Hits the Smart Home - React (www.bitdefender.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
833
1
KustoHawk: KustoHawk is a lightweight incident triage and response tool designed for effective incident response in Microsoft Defender XDR and Microsoft Sentinel environments. (github.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
834
3
Pro-Russia Hacktivists Conduct Opportunistic Attacks Against US and Global Critical Infrastructure (www.ic3.gov)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
835
1
AI powered SAST : The New Frontier? (devansh.bearblog.dev)
submitted 2 months ago by N7x to c/blueteamsec
0 comments fedilink
836
2
GrayBravo’s CastleLoader Activity Clusters Target Multiple Industries (www.recordedfuture.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
837
3
New BYOVD loader behind DeadLock ransomware attack (blog.talosintelligence.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
838
2
BinYars: Binary Ninja YARA-X Plugin (github.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
839
2
Chinese Malware Delivery Domains Part IV (dti.domaintools.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
840
2
The FACT Attribution Framework v1.0 (zenodo.org)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
841
2
【附IOC】Next.js RCE漏洞在野利用事件分析 - [Includes IOC] Analysis of Wild Exploitation Incidents of Next.js RCE Vulnerability (mp.weixin.qq.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
842
6
Prompt injection is not SQL injection (it may be worse) (www.ncsc.gov.uk)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
843
7
CVE-2025-55182: Explanation and full RCE PoC for CVE-2025-55182 (github.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
844
2
Streamlining Security Investigations with Agents (slack.engineering)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
845
2
React / Next.js - global vulnerable stats (dashboard.shadowserver.org)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
846
4
CLR-Unhook: Modern security products (CrowdStrike, Bitdefender, SentinelOne, etc.) hook the nLoadImage function inside clr.dll to intercept and scan in-memory .NET assembly loads. This tool unhooks (github.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
847
2
Operation Tornado:针对国产信创平台的网络间谍活动 - Operation Tornado: Cyber Espionage Targeting Domestic IT Innovation Platforms (mp.weixin.qq.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
848
3
Investigating Indonesia’s Gambling Ecosystem: Indicators of National-Level Cyber Operations (www.malanta.ai)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
849
2
New eBPF Filters for Symbiote and BPFdoor Malware (www.fortinet.com)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
850
5
A Hidden Pattern Within Months of Credential-Based Attacks Against Palo Alto GlobalProtect (www.greynoise.io)
submitted 2 months ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›