blueteamsec

669 readers
13 users here now

For [Blue|Purple] Teams in Cyber Defence - covering discovery, detection, response, threat intelligence, malware, offensive tradecraft and tooling, deception, reverse engineering etc.

founded 2 years ago
MODERATORS
digicat
listing: all - local
126
2
PoC for SeLockMemoryPrivilege: If you have SeLockMemoryPrivilege, you can consume physical memory with Lage Pages or AWE. (github.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
127
1
sliver-wasm-stager: A stager and implant that executes remote Web Assembly (github.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
128
2
Microsoft Sentinel is now supported in Unified RBAC with row-level access (techcommunity.microsoft.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
129
-1
GRC Was Built for a World That No Longer Exists Why compliance-heavy governance breaks in agile, cloud-native, and agentic AI environments and what must replace it (medium.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
130
1
Three men sentenced for facilitating employment of foreign workers in North Korean sanctions evasion scheme (www.justice.gov)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
131
5
Trivy Under Attack Again: Widespread GitHub Actions Tag Compromise Exposes CI/CD Secrets (socket.dev)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
132
3
CTI-REALM: Benchmark to Evaluate Agent Performance on Security Detection Rule Generation Capabilities (arxiv.org)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
133
3
Network and Device Level Cyber Deception for Contested Environments Using RL and LLMs (arxiv.org)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
134
2
Pwning AI Code Interpreters in AWS Bedrock AgentCore (www.beyondtrust.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
135
3
RegPhantom Backdoor Threat Analysis (www.nextron-systems.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
136
7
GhostLoader Malware: GitHub Repositories & AI Workflow Attacks Threat Labs - uses GitHub repositories and AI-assisted development workflows to deliver credential-stealing payloads on macOS. (www.jamf.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
137
1
lolc2.github.io: lolC2 is a collection of C2 frameworks that leverage legitimate services to evade detection (github.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
138
1
Advocate General Ćapeta: Member States may exclude Huawei hardware and software from 2G-4G and 5G telecommunications infrastructure on the basis that the manufacturer of that equipment poses a risk (curia.europa.eu)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
139
2
TeamPCP deploys CanisterWorm on NPM following Trivy compromise (www.aikido.dev)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
140
2
NIST SP 800-81r3 Final Publication | Secure Domain Name System (DNS) Deployment Guide | Final publication (csrc.nist.gov)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
141
2
Android developer verification: Balancing openness and choice with safety (android-developers.googleblog.com)
submitted 1 week ago by digicat to c/blueteamsec
1 comments fedilink
142
1
Vishing and Microsoft Teams Used to Deliver PhantomBackdoor (www.catonetworks.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
143
3
toast my way -abusing Windows toast notifications for fun and user manipulation (brmk.me)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
144
2
Delve - Fake Compliance as a Service - Part I (substack.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
145
2
Government of Iran Cyber Actors Deploy Telegram C2 to Push Malware to Identified Targets (www.ic3.gov)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
146
4
Building an Adversarial Consensus Engine | Multi-Agent LLMs for Automated Malware Analysis (www.sentinelone.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
147
4
CTO at NCSC Summary: week ending March 22nd (ctoatncsc.substack.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
148
6
Russian Intelligence Services Target Commercial Messaging Application Accounts (ic3.gov)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
149
2
From Misconfigured Spring Boot Actuator to SharePoint Exfiltration: How Stolen Credentials Bypass MFA (www.trendmicro.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
150
2
Google Calendar As C2 Infrastructure: China-nexus Campaign With Stealthy Tactics - from 2025 (www.virusbulletin.com)
submitted 1 week ago by digicat to c/blueteamsec
0 comments fedilink
view more: ‹ prev next ›