Hunting for Persistence in Linux (Part 1): Auditd, Sysmon, Osquery (and Webshells)

Threat Hunting Over the Network With Zeek and RITA

Building a Global Ignore Filter

Simulating a Beacon

Version 6.0.0 of AC-Hunter Has Been Released!

Malware of the Day – Cryptomining and Cryptojacking

AC-Hunter Whitelisting

Safelist Synchronization

Malware of the Day – Octopus

Filtering Out High Volume Traffic

What Is This TCP or UDP Port

Malware of the Day – Mythic – Apollo