-
Hi thx for sharing those iocs.
Was wondering if this hash 4e18f9293a6a72d5d42dad179b532407f45663098f959ea552ae43dbb9725cbf was volontarily added and if yes if it corresponds actually to Keystore Expl…
ghost updated
2 years ago
-
Hello,
it would be great to do API searches (like searches for a dedicated url / domain / hashtag / twitter user).
In our automation we only check dedicated IoCs about external reputation.
I wo…
-
Hello all,
this is my first time building s7plc as part of an automated pipeline we are working on for all the epics modules at NSLS2. I am building on RHEL 8, and when I clone the module into my s…
-
Add analytics and impact of other domains
```
Updated Minr #cryptojacking malware IoCs / domains to block.
Active Domains:
minr[.]pw
xy.nullrefexcep[.]com
cdn.static-cnt[.]bid
cloudcdn[.]gd…
-
Hello,
I would like to share with you an improvement concerning the parsing of "report.json" file using by the API.
The generated report is done using this part of the cuckoo's code :
https://git…
-
When a CA name-server sits in front of a CA Gateway, clients that use the name-server don't make new connections to PVs the gateway should be serving, it seems that the gateway only searches for and s…
-
This might be a generic pipeline function, but it's very useful specifically for threatintel
Looking up against a dedicated index of IOCs and adding a field that would generate an alert
-
I am running:
- procServ build from upstream sources (GitHub) on cygwin64 serving to port 12345
- child: a native Windows64 built 3.15 (bazaar trunk) IOC: just the softIoc exe from Base
When I connec…
-
Deploy network-based Intrusion Detection Systems (IDS) sensors to look for unusual attack mechanisms and detect compromise of these systems at each of the organization's network boundaries.
*Measur…
-
The MISP processing is working really well, only issue is, is that its pulling stuff out of "Analysis Comments" which is causing a lot of IOCs to be listed (eg 17000 have 8.8.8.8 in a comment field )…