Skip to content

Issues: timb-machine/linux-malware

[Intel]: Example Intel
#16 opened Apr 19, 2022 by timb-machine
Open
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
36 Open 0 Closed
36 Open 0 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

[Intel]: https://www.crowdstrike.com/blog/an-analysis-of-lightbasin-telecommunications-attacks deprecated:template ignore:tag:T1005 ignore:tag:T1021.002 ignore:tag:T1037 ignore:tag:T1048 ignore:tag:T1057 ignore:tag:T1070.004 ignore:tag:T1071.001 ignore:tag:T1491 ignore:tag:T1546.004 ignore:tag:T1562.004 ignore:tag:T1567 ignore:tag:T1573 ignore:tag:T1590
#8 opened Oct 19, 2021 by jdsnape updated Dec 6, 2024
@timb-machine
1
[Intel]: https://samples.vx-underground.org/samples/Families/Fastcash/ deprecated:template missing:tag:T1021.001 missing:tag:T1021.002 missing:tag:T1048 missing:tag:T1070.003 missing:tag:T1071.001 missing:tag:T1546.004 missing:tag:T1552.003 missing:tag:T1567 missing:tag:T1573
#135 opened Apr 19, 2022 by timb-machine updated Dec 6, 2024
@timb-machine
[Intel]: https://github.com/NetSPI/sshkey-grab deprecated:template new
#619 opened Mar 28, 2023 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://www.blackhat.com/presentations/bh-dc-08/Beauchamp-Weston/Whitepaper/bh-dc-08-beauchamp-weston-WP.pdf deprecated:template
#556 opened Oct 9, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://www.cs.dartmouth.edu/~sergey/cs258/2010/spainhower_DT.pdf deprecated:template
#555 opened Oct 9, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://c3media.vsos.ethz.ch/congress/2004/papers/057%20SUN%20Bloody%20Daft%20Solaris%20Mechanisms.pdf deprecated:template
#554 opened Oct 9, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://packetstormsecurity.com/files/author/3859/ deprecated:template missing:tag:JavaScript missing:tag:T1027.002 missing:tag:T1048 missing:tag:T1070.004 missing:tag:T1071.001 missing:tag:T1491 missing:tag:T1546.004 missing:tag:T1567 missing:tag:T1573
#553 opened Oct 9, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://darrenmartyn.ie/2021/07/05/procfs-bash-tricks-and-detecting-cowrie/ deprecated:template missing:tag:RedirectionToNull missing:tag:T1021.004 missing:tag:T1027.002 missing:tag:T1048 missing:tag:T1057 missing:tag:T1070.004 missing:tag:T1071.001 missing:tag:T1083 missing:tag:T1491 missing:tag:T1546.004 missing:tag:T1560 missing:tag:T1567 missing:tag:T1573
#528 opened Sep 30, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://github.com/fireeye/SSSDKCMExtractor deprecated:template missing:tactics
#520 opened Sep 15, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://github.com/blacklanternsecurity/KCMTicketFormatter deprecated:template
#519 opened Sep 15, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://github.com/elfmaster/maya deprecated:template new
#504 opened Sep 2, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://www.trendmicro.com/en_us/research/22/h/irontiger-compromises-chat-app-Mimi-targets-windows-mac-linux-users.html deprecated:template missing:tag:JavaScript missing:tag:Non-persistentStorage missing:tag:T1005 missing:tag:T1048 missing:tag:T1057 missing:tag:T1070.003 missing:tag:T1070.004 missing:tag:T1071.001 missing:tag:T1083 missing:tag:T1491 missing:tag:T1518 missing:tag:T1546.004 missing:tag:T1552.003 missing:tag:T1567 missing:tag:T1573 new
#501 opened Aug 17, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://redcanary.com/blog/process-streams/ deprecated:template missing:tag:eBPF missing:tag:RedirectionToNull missing:tag:T1003.008 missing:tag:T1005 missing:tag:T1021.002 missing:tag:T1037 missing:tag:T1046 missing:tag:T1048 missing:tag:T1053.003 missing:tag:T1053.007 missing:tag:T1057 missing:tag:T1059.006 missing:tag:T1070.002 missing:tag:T1070.004 missing:tag:T1071.001 missing:tag:T1083 missing:tag:T1205 missing:tag:T1491 missing:tag:T1546.004 missing:tag:T1567 missing:tag:T1573 missing:tag:T1590 missing:tag:T1609 missing:tag:T1610
#494 opened Aug 8, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://github.com/metac0rtex/SSH-Key-Brute-Forcer deprecated:template
#489 opened Aug 6, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://grugq.github.io/docs/ul_exec.txt deprecated:template missing:tag:ProcessTreeSpoofing missing:tag:T1021.002 missing:tag:T1057 missing:tag:T1070.004 missing:tag:T1071.001 missing:tag:T1491 missing:tag:T1567 missing:tag:T1590
#463 opened Jun 30, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://magisterquis.github.io/2018/03/11/process-injection-with-gdb.html deprecated:template missing:tag:T1005 missing:tag:T1007 missing:tag:T1021.002 missing:tag:T1021.004 missing:tag:T1037 missing:tag:T1048 missing:tag:T1053.003 missing:tag:T1053.006 missing:tag:T1055.008 missing:tag:T1057 missing:tag:T1071.001 missing:tag:T1083 missing:tag:T1491 missing:tag:T1543.002 missing:tag:T1546.004 missing:tag:T1567 missing:tag:T1573 missing:tag:T1574.006 missing:tag:T1590 missing:tag:T1622
#462 opened Jun 30, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://gist.github.com/timb-machine/6177721c3eafba3e95abdf112b2a5902 deprecated:template
#461 opened Jun 30, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://www.volatilityfoundation.org/releases-vol3 deprecated:template missing:tag:T1005 missing:tag:T1027.002 missing:tag:T1048 missing:tag:T1053.003 missing:tag:T1057 missing:tag:T1070.004 missing:tag:T1071.001 missing:tag:T1205 missing:tag:T1491 missing:tag:T1567 missing:tag:T1573
#457 opened Jun 14, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://github.com/NixOS/patchelf deprecated:template
#443 opened May 29, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://github.com/jermeyyy/rooty deprecated:template new
#440 opened May 21, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://2018.zeronights.ru/wp-content/uploads/materials/09-ELF-execution-in-Linux-RAM.pdf deprecated:template
#436 opened May 19, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://twitter.com/inversecos/status/1527188391347068928 deprecated:template missing:tag:Non-persistentStorage missing:tag:T1027.002 missing:tag:T1048 missing:tag:T1057 missing:tag:T1071.001 missing:tag:T1560 missing:tag:T1567 missing:tag:T1573 missing:tag:T1590 missing:tag:T1620
#435 opened May 19, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://github.com/toffan/binfmt_misc deprecated:template new
#431 opened May 16, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
[Intel]: https://www.sentinelone.com/blog/shadow-suid-for-privilege-persistence-part-1/ deprecated:template missing:tag:T1003.008 missing:tag:T1021.002 missing:tag:T1048 missing:tag:T1053.007 missing:tag:T1057 missing:tag:T1070.004 missing:tag:T1071.001 missing:tag:T1083 missing:tag:T1491 missing:tag:T1518 missing:tag:T1546.004 missing:tag:T1567 missing:tag:T1573 missing:tag:T1574.007 missing:tag:T1609 missing:tag:T1610 new
#430 opened May 16, 2022 by timb-machine updated Aug 18, 2023
[Intel]: https://pbs.twimg.com/media/FSi1m3gXsAA79yF?format=jpg&name=medium deprecated:template new
#428 opened May 12, 2022 by timb-machine updated Aug 18, 2023
@timb-machine
ProTip! Add no:assignee to see everything that’s not assigned.