Hunting for Persistence in Linux (Part 1): Auditd, Sysmon, Osquery (and Webshells)
Threat Hunting Over the Network With Zeek and RITA
Building a Global Ignore Filter
Simulating a Beacon
Version 6.0.0 of AC-Hunter Has Been Released!
Malware of the Day – Cryptomining and Cryptojacking

AC-Hunter Whitelisting

Safelist Synchronization



Malware of the Day – Octopus

Filtering Out High Volume Traffic

What Is This TCP or UDP Port



Malware of the Day – Mythic – Apollo