#Research
"Machine Learning-based Ransomware Detection Using Low-level Memory Access Patterns Obtained From Live-forensic Hypervisor", 2022.

📰
📚

📚 t.iss.one/Library_Sec

📚 t.iss.one/Library_Sec

📚 t.iss.one/Library_Sec

📚 t.iss.one/Library_Sec

#Research
#Malware_analysis
"An analysis of offensive capabilities of eBPF and implementation of a rootkit", 2022.

]-> A Linux eBPF rootkit with a backdoor, C2, library injection, execution hijacking, persistence and stealth capabilities:
https://github.com/h3xduck/TripleCross

📰
📚

#Threat_Research
"CDN Judo: Breaking the CDN DoS Protection with Itself", NDSS 2020.

📰
📚

#Offensive_security
Black Hat Asia 2022:
"AMSI Unchained: Review of Known AMSI Bypass Techniques and Introducing a New One".

📰
📚

#Whitepaper
"Return of the Evilnum #APT with updated TTPs and new targets", 2022.

📰
📚

#Offensive_security
Black Hat USA 2020:
"Escaping Virtualized Containers".

📰
📚

#Research
"A Large-scale and Longitudinal Measurement Study of DKIM Deployment", ВUSENIX Security, 2022.

📰
📚
⌨

#Research
"HDiff: A Semi-automatic Framework for Discovering Semantic Gap Attack in HTTP Implementations", IEEE/IFIP 2022.
]-> Repo: https://github.com/mo-xiaoxi/HDiff

📰
📚

#Whitepaper
#Blue_Team

"Detecting Unauthorized Behavior From Legitimate Accounts", 2022.

📰
📚

#WarCon22 – Modern Initial Access and Evasion Tactics

📚 t.iss.one/Library_Sec

#Infosec_Standards
NIST SP 800-219:
"Automated Secure Configuration Guidance from the macOS Security Compliance Project (mSCP)", June 2022.

📰
📚

#Whitepaper
#Blue_Team
"Triaging Windows Event Logs for Ransomware Investigations", 2022.

📰
📚

📚 t.iss.one/Library_Sec

📚 t.iss.one/Library_Sec

📚 t.iss.one/Library_Sec

#Red_Team

Hunting Red Team Activities

📰
📚