17 matches found
SOC-Alert-Investigation-Portfolio
SOC Alert Investigation Portfolio This repository contains pr...
Inside the Fix: AI-Powered Root Cause Analysis of CVE-2025-60719
...
Information Leakage Vulnerability in Network Intelligence Analysis System of Stoneco (Nanjing) Information Technology Co.
Ltd. is an enterprise focusing on AI technology innovation, dedicated to promoting industry innovation through AI technology and building a customer-centric, business-scene-focused full-service system. There is an information leakage vulnerability in the network intelligence analysis system of...
Earth Preta’s Cyberespionage Campaign Hits Over 200
We present a case study of the cyberespionage efforts by Earth Preta. This study on an active campaign delves into the structure, goals, and requirements of the organizations involved, and provides an opportunity to conduct wider intelligence analysis and insights in the development of effective...
Get to Know Anne An
Meet Anne An Senior Security Researcher By Trellix · August 25, 2022 This blog was written by Michael Alicea At Trellix, we celebrate and champion our people. I’ve been hearing a lot recently about one of my colleagues, Anne An. My sources tell me she is a highly technical and “intuitive”...
Security Bulletin: Vulnerability with Diffie-Hellman ciphers may affect IBM i2 Intelligence Analysis Platform (CVE-2015-4000)
Summary The LogJam Attack on Diffie-Hellman ciphers CVE-2015-4000 may affect some configurations of the IBM WebSphere Application Server used with the IBM i2 Intelligence Analysis Platform. The IBM HTTP Server used by IBM i2 Intelligence Analysis Platform is not affected. Vulnerability Details...
Intel Owl - Analyze Files, Domains, IPs In Multiple Ways From A Single API At Scale
Do you want to get threatintelligence data about a file, an IP or a domain? Do you want to get this kind of data from multiple sources at the same time using a single API request? You are in the right place! This application is built to scale out and to speed up the retrieval of threat info. It c...
Attribution: A Puzzle
By Martin Lee, Paul Rascagneres and Vitor Ventura. Introduction The attribution of cyber attacks is hard. It requires collecting diverse intelligence, analyzing it and deciding who is responsible. Rarely does the evidence available to researchers reach a level of proof that would be acceptable in...
Pentagon Draws Back the Veil on APT Malware with Sudden Embrace of VirusTotal
The Pentagon has suddenly started uploading malware samples from APTs and other nation-state sources to the website VirusTotal, which is essentially a malware zoo that’s used by security pros and antivirus/malware detection engines to gain a better understanding of the threat landscape. The Cyber...
Threat Hunting: Adoption, Expertise Grow, but Work Remains
Threat hunting, an often misunderstood but powerful security practice, is gaining traction, as more organizations reap benefits from it and get better at it. However, there is still a lot of room for adoption to increase and for practices to improve. Those were key findings from the SANS...
Iron Rain: Gaining Situational Intelligence to Make Rapid Decisions
In our previous article we introduced the idea of cyber insurgency and irregular warfare. Building on effective techniques from the Marine Corps, we now want to discuss combating the threat. COUNTERINSURGENT FORCES MUST UNDERSTAND THE ENVIRONMENT As destructive attacks surge, integrity attacks...
Security Bulletin: A security vulnerability has been identified in WebSphere Liberty bundled with IBM i2 Analyze. (CVE 2015-7450)
Summary The Java serialization attack on Apache Commons Collections CVE-2015-7450 affects the configuration of IBM WebSphere Application Server Liberty Profile shipped as an embedded component of IBM i2 Intelligence Analysis Platform / IBM i2 Analyze. Vulnerability Details Please consult the...
Security Bulletin: A security vulnerability has been identified in WebSphere Application Server bundled with IBM i2 Intelligence Analysis Platform. (CVE 2015-7450)
Summary WebSphere Application Server is shipped as a component of IBM i2 Intelligence Analysis Platform. Information about a security vulnerability affecting WebSphere Application Server has been published in a security bulletin. Vulnerability Details Please consult the security bulletin...
Security Bulletin: Vulnerability with Diffie-Hellman ciphers may affect IBM i2 Intelligence Analysis Platform (CVE-2015-4000)
Summary The LogJam Attack on Diffie-Hellman ciphers CVE-2015-4000 may affect some configurations of the IBM WebSphere Application Server used with the IBM i2 Intelligence Analysis Platform. The IBM HTTP Server used by IBM i2 Intelligence Analysis Platform is not affected. Vulnerability Details...
Tinfoleak v2.4 - The Most Complete Open-Source Tool For Twitter Intelligence Analysis
The most complete open-source tool for Twitter intelligence analysis Introduction tinfoleak is an open-source tool within the OSINT Open Source Intelligence and SOCMINT Social Media Intelligence disciplines, that automates the extraction of information on Twitter and facilitates subsequent analys...
FBstalker Does Data Mining on Facebook Graph Search
Facebook’s Graph Search feature connects a lot of dots between friends on the social network—as well as between others who interact with your Facebook friends. Anyone with a keyboard has a nifty data mining tool at their fingertips that can bring up an intricate list of friends and acquaintances,...
Gathering Threat Intelligence With Open Tools
Threat intelligence is one of the go-to buzz phrases for many people in the security industry right now, and it’s thrown in so many contexts and situations, it’s quickly becoming almost meaningless. Most people understand that they need to get better information about what’s happening both on the...