SOC analysts need a lot of theoretical and practical knowledge when detecting threats in their work routines. One of the best sources they can obtain this information is books. We will talk about 3 different books in this article: Practical Malware Analysis: The Hands-On Guide to Dissecting Malicious Software Blue Team Field Manual (BTFM) AppliedRead More
Proofpoint security researchers state that cyber attack groups have adopted a new technique called “RTF Template Injection” and reported that this technique has a low detection rate. It is also included in the report that phishing attacks were carried out on many institutions with the help of RTF Template Injection technique in 2021 by cyberRead More
In this article, we will talk about the hackers who set up a Bitcoin mining network. We created a fake e-commerce website in hopes of seeing an interesting situation. Then, we wrote a C # application that will send me the applications, processes and software installed on the device as an e-mail, when it isRead More
We constantly spend time analyzing malware. We have listed 29 addresses that can be useful for blue team members to use time more effectively: Anlyz Any.run Comodo Valkyrie Cuckoo Hybrid Analysis Intezer Analyze SecondWrite Malware Deepview Jevereg IObit Cloud BinaryGuard BitBlaze SandDroid Joe Sandbox AMAaaS IRIS-H Gatewatcher Intelligence Hatching Triage InQuest Labs Manalyzer SandBlast AnalysisRead More
If you work in the defensive field, analyzing malware becomes part of your job. In this article, we will discuss with which approaches you can analyze malware and the advantages / disadvantages of these approaches to each other. There are 2 different approaches to analyzing malware. Static Analysis Dynamic Analysis What is Static Analysis? ItRead More