The MITRE ATT&CK Framework: A Threat Hunter’s Strategic Compass
Malware of the Day – Encrypted DNS Comparison: Detecting C2 When You Can’t See the Queries
Malware of the Day – TXT Record Abuse in DNS C2 (Joker Screenmate)
Hunt What Hurts: The Pyramid of Pain
Malware of the Day – Command and Control via Google Workspace APIs
Malware of the Day – Agent-to-Agent Communication via SMB (AdaptixC2)
A Network Threat Hunter’s Guide to DNS Records
Malware of the Day – Velociraptor as C2
Safe vs Malicious: DNS Edition
DNS Packet Inspection for Network Threat Hunters
Malware of the Day – Multi-Modal C2 Communication – Numinon C2
Extracting Lines of Interest From Zeek Logs