-
**Describe the problem you are facing**
Currently, when I want to execute the same set of queries in `mwdb` frequently (once a day, once a week, ...) I don't have any easy way to do this. Only by ty…
-
## Problem Description
We introduce the TypeRefHash (TRH) which is an alternative to the ImpHash that does not work with .NET binaries. Our evaluation shows that it can effectively be used to identif…
-
### Description
When following along with the use case, the Family dropdown is blank
### Environment
| Question | Answer
|------------------|--------------------
| Git commit | …
-
Import public threat reports from open sources blogs.
- The html page should be transformed in to an OpenCTI report
- The URL of the page should be transformed into an external reference
- If the…
-
In STIX 2.1, all malware SDOs require an `is_family` boolean property. The current REST API spec does not include this value, and it should be added to malware-type software.
-
| Name | Description | Size | Format | URL |
| --- | --- | --- | --- | --- |
| World Bank - Light Every Night | Light Every Night - World Bank Nightime Light Data – provides open access to all night…
-
# Expected Behavior
When I enable the memory dump to integrate malconfscan functionality into an environment with proxmox, I notice that the memory dump does not work (memory dump not found), and t…
-
## Description
OLM team issue: https://github.com/elastic/security-team/issues/515
Behavioral ransomware prevention on the Elastic Agent detects and stops ransomware attacks on Windows systems …
-
there are a number of interesting rules, like manual PEB parsing, that fire on standard routines inserted by the MSVC compiler. typically, we'd want to include these in the output, except that some of…
-
In my use case, i have clients who produce STIX 2.1 data, and i wish to utilize the very effective error handling and validators from the stix2 module on this data. How would i go about doing this?
…