unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
Release Highlights: VMRay Platform 2025.1.0
这篇文章介绍了VMRay平台在2025年的首次更新,新增了六个功能和改进。包括可搜索的威胁名称、检测剪贴板访问、扩展LNK分析支持、增强的Geofence VPN功能、与Microsoft Defender的连接器以及从Office文档中的QR码提取URL的能力。这些更新提升了威胁检测和分析效率。...
2025-2-14 12:20:16 | 阅读: 2 |
收藏
|
VMRay - www.vmray.com
vmray
clipboard
malicious
conhost
security
January 2025 Detection Highlights: Entrypoint Injection, Hotlinking, and a Robust New Set of Smart Link Detonation Rules
VMRay Labs团队在2025年1月发现了多种新型恶意软件行为和工具滥用,并新增了多种威胁检测机制。包括入口点注入、直接从公共平台加载资源、滥用macOS代码签名工具、枚举显示适配器以及利用易受攻击的驱动程序(BYOVD)攻击等新威胁识别器(VTI)。此外,团队还改进了智能链接引爆(SLD)功能,并新增了针对伪造发件人、e.trustifi.com域名和雅虎附属链接的触发规则。同时,团队还添加了新的YARA规则来检测Metasploit shellcode变种、Phishkit.RandLoad和BruteRatel C2框架等恶意活动。...
2025-2-11 14:18:25 | 阅读: 1 |
收藏
|
VMRay - www.vmray.com
security
phishing
vti
malicious
attackers
Fully undetected Shell Script dropping macOS Atomic Stealer
Skip to contentVMRay Labs found a DMG file containing a malicious Shell...
2025-2-4 13:14:26 | 阅读: 5 |
收藏
|
VMRay - www.vmray.com
download
malicious
vmray
modifies
remained
From analysis to action: Enhancing government threat models with malware insights
A Real-World Example: Applying the Diamond ModelLet’s look at a real-life application of the Diam...
2025-1-28 15:22:6 | 阅读: 4 |
收藏
|
VMRay - www.vmray.com
defenses
sandboxing
diamond
phases
attackers
Heavily obfuscated batch file loads XWorm hosted on GitHub
VMRay Labs found a multi-stage obfuscated batch script...
2025-1-20 11:12:21 | 阅读: 7 |
收藏
|
VMRay - www.vmray.com
detections
xworm
github
marker
download
December 2024 Detection Highlights: Detecting DLL hollowing and phishing using SVGs, and an expanded set of new YARA rules
The Labs team at VMRay actively gathers publicly available data to identify any noteworthy malware...
2025-1-8 06:57:56 | 阅读: 3 |
收藏
|
VMRay - www.vmray.com
phishing
malicious
security
cryptbot
memory
Unveiling the Power of Threat Intelligence Platforms
In today’s hyper-connected world, the digital transformation of businesses has significantly...
2025-1-7 18:6:31 | 阅读: 4 |
收藏
|
VMRay - www.vmray.com
tips
vmray
security
threats
analysis
Backdoored configuration script waits until user is inactive (!) to run Linux malware
2024-12-17 14:13:39 | 阅读: 3 |
收藏
|
VMRay - www.vmray.com
backdoored
kills
nmon
attackers
heavy
Inside the latest phishing campaigns: dissecting CarPhish, EDG, Tpass, and Mamba2FA kits
Phishing has been known as one of the leading initial attack vectors for a long time. Here at V...
2024-12-16 09:13:43 | 阅读: 2 |
收藏
|
VMRay - www.vmray.com
hxxps
phishing
edg
vmray
mamba2fa
Detection Highlights – November 2024: A robust set of new YARA rules, voice mail phishing detection with Auto UI, and fresh VTIs.
The Labs team at VMRay actively gathers publicly available data to identify any noteworthy malware...
2024-12-12 18:22:48 | 阅读: 6 |
收藏
|
VMRay - www.vmray.com
phishing
vfork
vmray
osascript
attackers
Top Threat Intelligence Tools: Enhancing Cybersecurity Readiness
The cybersecurity landscape is evolving at an unprecedented pace. For organizations, keeping ahe...
2024-11-28 00:23:29 | 阅读: 5 |
收藏
|
VMRay - www.vmray.com
threats
vmray
security
misp
Release Highlights: VMRay Platform 2024.5.0
IntroductionAs 2024 comes to a close, we’ve already rolled out four impactful releases, each pa...
2024-11-22 17:17:56 | 阅读: 6 |
收藏
|
VMRay - www.vmray.com
vmray
phishing
analysis
malicious
qr
What Are Threat Intelligence Feeds? A Guide to Proactive Cyber Defense
While threats against cybersecurity increase in complexity, it calls for proactive intelligence...
2024-11-13 05:7:3 | 阅读: 13 |
收藏
|
VMRay - www.vmray.com
feeds
threats
security
vmray
actionable
The role of advanced malware analysis in government cybersecurity
Carsten: For 10 years now, since the inception of VMRay, we’ve been talking about full visibility...
2024-11-11 23:22:33 | 阅读: 7 |
收藏
|
VMRay - www.vmray.com
cloud
security
breed
reactive
prem
Detection Highlights – October 2024: Detecting self-deleting malware using ADS, event log evasion, and upgraded YARA rules
The Labs team at VMRay actively gathers publicly available data to identify any noteworthy malware...
2024-11-7 19:29:6 | 阅读: 6 |
收藏
|
VMRay - www.vmray.com
security
xworm
vmray
latrodectus
vti
Game On: How Threat Intel and Sandboxing are the Ultimate Co-op
Ertugrul KaraErtugrul Kara is the Senior Product Marketing Manager for VMRay. With a career spanning...
2024-11-5 21:57:31 | 阅读: 2 |
收藏
|
VMRay - www.vmray.com
security
vmray
alignment
stage
specialized
Latrodectus: A year in the making
VIEW VMRAY’S ANALYSIS REPORTOverviewLatrodectus was first discovered by researchers in Octobe...
2024-10-21 18:36:57 | 阅读: 8 |
收藏
|
VMRay - www.vmray.com
latrodectus
hxxps
c2
windows
loader
Detection Highlights – September 2024: Config Extractor for Latrodectus, Detecting Disablement of Windows Defender & Security Center Notifications, and PhishKit
The Labs team at VMRay actively gathers publicly available data to identify any noteworthy malware...
2024-10-4 19:39:49 | 阅读: 13 |
收藏
|
VMRay - www.vmray.com
windows
security
defender
phishing
vti
Advantage Attacker: EDR Bypass Tools | Scarecrow
Over the last 10-12 years, EDR solutions have become a mainstay in endpoint defense. The reason...
2024-9-25 16:31:50 | 阅读: 33 |
收藏
|
VMRay - www.vmray.com
sideloading
scarecrow
bypass
injection
clp
Why Best-in-Class Security Solutions Outmatch Product Suites
In any other IT technology solution, from productivity suites, CRM, or financial applications, p...
2024-9-11 17:41:20 | 阅读: 8 |
收藏
|
VMRay - www.vmray.com
suites
blowback
gaps
portfolio
Previous
1
2
3
4
5
6
7
8
Next