Outer Web | Explore

Explore >> Select a destination

You are here		www.deepinstinct.com LSASS Memory Dumps: Dumping Methods Explained [Part 1] \| Deep Instinct
\|	\|	thehackernews.com RansomHub Group Deploys New EDR-Killing Tool in Latest Cyber Attacks	9.8 parsecs away Travel
\|	\|	EDRKillShifter, a new tool linked to RansomHub ransomware, targets EDR software, posing a growing threat to endpoint security.	9.8 parsecs away Travel
\|	\|	marcusedmondson.com Dripping a Little Honey in Your Environment - Marcus Edmondson \| Offensive Security \| Information Security	10.2 parsecs away Travel
\|	\|	Today I wanted to talk about using the deception technology called New-HoneyHash.ps1. This is a tool that was inspired by Mark Baggett and authored by Matt Graeber, that will inject fake credentials into the lsass.exe process. This can be effective at finding attackers who are dumping the lsass process in your environment in order to...	10.2 parsecs away Travel
\|	\|	www.cybereason.com THREAT ANALYSIS REPORT: Bumblebee Loader - The High Road to Enterprise Domain Control	8.2 parsecs away Travel
\|	\|	Cybereason GSOC observed distribution of the Bumblebee Loader and post-exploitation activities including privilege escalation, reconnaissance and credential theft. Bumblebee operators use the Cobalt Strike framework throughout the attack and abuse credentials for privilege escalation to access Active Directory, as well as abusing a domain administrator account to move laterally, create local user accounts and exfiltrate data...	8.2 parsecs away Travel
\|	\|	unit42.paloaltonetworks.com Threat Brief: Multiple Vulnerabilities Including Zero-Day Remote Unauthenticated API Access - CVE-2023-35078 - in Ivanti Endp...	86.8 parsecs away Travel
\|		We summarize current facts around CVE-2023-35078 affecting Ivanti Endpoint Manager Mobile (MobileIron Core). Included is attack scope and our interim guidance.	86.8 parsecs away Travel