GitHub

powershell_fileless_script_contains_base64_encoded_content.yml

description: The following analytic detects the execution of PowerShell scripts containing Base64 encoded content, specifically identifying the use of `FromBase64String`. It leverages PowerShell ...
Microsoft

StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them

On June 24, 2026, Microsoft’s Digital Crimes Unit (DCU) facilitated the takedown, suspension, and blocking of domains that ...
Microsoft

Crypto Clipper uses Tor and worm-like propagation for persistence and control

Microsoft Threat Intelligence analyzed a cryptocurrency clipper campaign that combines clipboard theft, wallet replacement, ...
LinkedIn

Deprecating the "Backup with Shell Scripts" page

𝐃𝐞𝐩𝐫𝐞𝐜𝐚𝐭𝐢𝐧𝐠 𝐭𝐡𝐞 “𝐁𝐚𝐜𝐤𝐮𝐩 𝐰𝐢𝐭𝐡 𝐒𝐡𝐞𝐥𝐥 𝐒𝐜𝐫𝐢𝐩𝐭𝐬” 𝐩𝐚𝐠𝐞 𝐟𝐨𝐫 𝐭𝐡𝐞 𝐔𝐛𝐮𝐧𝐭𝐮 𝐬𝐞𝐫𝐯𝐞𝐫 𝐝𝐨𝐜𝐬 Deprecating the “Backup with Shell Scripts” page for the ...
GitHub

A-poc/RedTeam-Tools

Customer stories Events & webinars Ebooks & reports Business insights GitHub Skills ...
OSTechNix

Nmap Commands Explained: The Complete Guide to Network Scanning

Learn essential Nmap commands for network scanning, port discovery, and OS detection. Complete guide with examples and a ...
WeLiveSecurity

FishMonger’s arsenal upgraded: SprySOCKS for Windows

ESET researchers have discovered SprySOCKS for Windows, FishMonger’s backdoor weaponizing a kernel driver for advanced ...
WeLiveSecurity

Killing me gently: Inside Gentlemen’s EDR killer framework

ESET researchers analyzed the robust EDR-killing toolset of the ransomware-as-a-service gang Gentlemen. Since the beginning of 2026, Gentlemen has emerged as one of the most active gangs in the ...