evasion Archives - Unit 42

PowerShell Empire フレームワークによる C2 検出のための ML (機械学習) ベースの堅牢な学習システムのトレーニング

99

people reacted

PowerShell Empire フレームワークによる C2 検出のための ML (機械学習) ベースの堅牢な学習システムのトレーニング

By Qian Feng, Chris Navarrete, Yanhui Jia, Yu Fu, Iris Dai, Nina Smith and Brad Duncan
November 5, 2023 at 11:26 PM

0

4 min. read

A pictorial representation of malware that can be combated with tailored sandbox techniques

1,792

people reacted

隠れた脅威を検出する技術: サンドボックスを調整する2つの方法

By Esmid Idrizovic, Bob Jung, Daniel Raygoza and Sean Hughes
March 22, 2023 at 12:56 AM

0

2 min. read

Malware conceptual image, covering topics such as Cobalt Strike Team Server, which can be abused by malware authors for malicious purposes

3,279

people reacted

Cobalt Strike解析&チュートリアル: 野生(in the wild)のCobalt Strike Beacon Team Serverの識別

By Durgesh Sangvikar, Chris Navarrete, Matthew Tennis, Yanhui Jia, Yu Fu and Siddhart Shibiraj
November 8, 2022 at 6:15 PM

0

3 min. read

Conceptual image representing malware, such as the information stealer IcedID, being delivered by a polyglot file.

2,662

people reacted

そのCHMには裏がある: IcedIDを配布するポリグロットCHMファイルの解析

By Mark Lim
October 2, 2022 at 7:38 PM

0

2 min. read

A conceptual image representing malware and its evasions.

3,816

people reacted

Cobalt Strike解析&チュートリアル: Cobalt Strikeによるメタデータの暗号化と復号

By Chris Navarrete, Durgesh Sangvikar, Yu Fu, Yanhui Jia and Siddhart Shibiraj
July 13, 2022 at 7:40 PM

0

3 min. read

A conceptual image that represents malware, including the malicious uses of Cobalt Strike and its metadata encoding algorithm covered here.

3,228

people reacted

Cobalt Strike解析&チュートリアル: Cobalt Strikeによるメタデータのエンコードとデコード

By Chris Navarrete, Durgesh Sangvikar, Yu Fu, Yanhui Jia and Siddhart Shibiraj
May 8, 2022 at 11:18 PM

0

4 min. read

A conceptual image representing DNS security, such as the strategically aged domain detection system discussed here.

5,888

people reacted

戦略的熟成ドメインの検出: DNSトラフィックの傾向から捕捉するAPT攻撃

By Zhanhao Chen, Daiping Liu, Wanjin Li and Jielong Xu
December 29, 2021 at 6:00 AM

1

2 min. read

A conceptual image representing malware, such as Emotet, discussed in this blog.

3,417

people reacted

攻撃チェーンの概要: 2020年12月および2021年1月のEmotet

By Chris Navarrete, Yanhui Jia, Matthew Tennis, Durgesh Sangvikar and Rongbo Shao
March 14, 2021 at 5:35 PM

1

4 min. read

This conceptual image illustrates the idea of malware, such as the njRAT spreading through active Pastebin command and control tunnel that is discussed in this blog.

4,464

people reacted

稼働中のPastebinによるコマンド&コントロールトンネルを介しnjRATが拡散

By Yanhui Jia, Chris Navarrete and Haozhe Zhang
December 9, 2020 at 6:00 AM

0

3 min. read