Cat
Thank you for making a PR request!! 🤩 Links are a tricky thing, for sites we own (MITRE & CTID) it makes sense to check and a great call out....
Going to go ahead and finish the work I've already started on this.
Review current stack of work https://docs.google.com/document/d/1ZEUiHeWYHSwhHZY6K0dqU6-_TFVHcOWOnU5JHYWki24/edit#heading=h.menntqnhxg3x
**Goal:** - Next meeting (13Feb21) be able to contribute to build a scenario based off research **Stretch Goal:** - What company to emulate - Ocean Lotus infrastructure domain list -...
Initial Infection | November 2020 | https://www.trendmicro.com/en_us/research/20/k/new-macos-backdoor-connected-to-oceanlotus-surfaces.html -- | -- | -- Steganography Usage | April 2019 | https://threatpost.com/oceanlotus-apt-uses-steganography-to-shroud-payloads/143373/ Windows - discusses how they change as IOCs are published |...
**Goal** Discussion from 13FEB21 meeting - build out read me, define scope, continue research, submit public release for companies, and continue scenario. Approve of Cat's idea regarding human right activist...
Had a meeting with Caldera team member William Booth. Team conclusion - Tool is awesome but would likely need a bit of dev work to use as our C2. However...
Using the intellectual property release proposal as the base for the read me https://docs.google.com/document/d/1uE9uGe8klg_A4e7vBJPPcZvZg4CHgVChYAHGdEFxG2w/edit
https://docs.google.com/document/d/1ZEUiHeWYHSwhHZY6K0dqU6-_TFVHcOWOnU5JHYWki24/edit#heading=h.menntqnhxg3x