AttackDetection icon indicating copy to clipboard operation
AttackDetection copied to clipboard

Published 20 hours ago verified publisher icon ptresearch

Metadata

Attack Detection

Results 5 AttackDetection issues
Sort by recently updated
recently updated
newest added

Importing via suricata ptsearch.xml doesnt work.

Lovely work!

xkpx64 avatar xkpx64

CVE-2020-3952 proposal

1 comment

Hi, You can find an attempt to match exploitation of the vmware vmdir CVE-2020-3952 by checking for ldap modify operation on Administrators built-in group here https://github.com/gelim/CVE-2020-3952/blob/master/vmware.rules That may require some...

gelim avatar gelim

Extend "Fake DC Creation"

Hi! I invented a rule aimed to detect LDAP deletion request (`delRequest`) of `nTDSDSA` object. According [UncoverDCShadow](https://github.com/AlsidOfficial/UncoverDCShadow/) this is a reliable attribute of DCShadow attack. The rule was successfully tested...

spacepatcher avatar spacepatcher

what is the pwassword to zip files

2 comment

johnarakas avatar johnarakas

How to launch?

1 comment

I Downloaded and pcap file? How to launch pcap file.

GrowtopiaJe avatar GrowtopiaJe

Metadata

1.3k
Stars
370
Forks
Watchers

Owner

verified publisher icon ptresearch

Metadata

Attack Detection

Back