- Tracking interesting Linux (and UNIX malware). https://github.com/timb-machine/linux-malware 35 comments linux
- A crowd sourced compendium of modern Linux malware and offensive techniques https://github.com/timb-machine/linux-malware 29 comments netsec
Linked pages
- WikiLeaks - Vault 7: Projects https://wikileaks.org/vault7/#Pandemic 518 comments
- GitHub - FiloSottile/age: A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability. https://github.com/FiloSottile/age 495 comments
- Document https://www.sec.gov/Archives/edgar/data/1609711/000160971121000122/gddyblogpostnov222021.htm 492 comments
- GTFOBins https://gtfobins.github.io/ 249 comments
- Symbiote: A New, Nearly-Impossible-to-Detect Linux Threat https://www.intezer.com/blog/research/new-linux-threat-symbiote/ 223 comments
- RotaJakiro: A long live secret backdoor with 0 VT detection https://blog.netlab.360.com/stealth_rotajakiro_backdoor_en/ 178 comments
- An Analysis of Godlua Backdoor https://blog.netlab.360.com/an-analysis-of-godlua-backdoor-en/ 168 comments
- APT Encounters of the Third Kind - Igor’s Blog https://igor-blue.github.io/2021/03/24/apt1.html 163 comments
- https://media.defense.gov/2020/aug/13/2002476465/-1/-1/0/csa_drovorub_russian_gru_malware_aug_2020.pdf 151 comments
- Linux Trojan “Hand of Thief” ungloved https://blog.avast.com/2013/08/27/linux-trojan-hand-of-thief-ungloved/ 142 comments
- Linux-Targeted Malware Increases by 35% in 2021 | CrowdStrike https://www.crowdstrike.com/blog/linux-targeted-malware-increased-by-35-percent-in-2021/ 124 comments
- Zero-Day Exploitation of Atlassian Confluence | Volexity https://www.volexity.com/blog/2022/06/02/zero-day-exploitation-of-atlassian-confluence/ 115 comments
- Linux Threat Hunting: 'Syslogk' a kernel rootkit found under development in the wild - Avast Threat Labs https://decoded.avast.io/davidalvarez/linux-threat-hunting-syslogk-a-kernel-rootkit-found-under-development-in-the-wild/ 113 comments
- GitHub - x0rz/EQGRP: Decrypted content of eqgrp-auction-file.tar.xz https://github.com/x0rz/eqgrp 85 comments
- New VPNFilter malware targets at least 500K networking devices worldwide https://blog.talosintelligence.com/2018/05/vpnfilter.html 80 comments
- PyPI Package 'secretslib' Drops Fileless Linux Malware to Mine Monero https://blog.sonatype.com/pypi-package-secretslib-drops-fileless-linux-malware-to-mine-monero 67 comments
- KillDisk now targeting Linux: Demands $250K ransom, but can’t decrypt | WeLiveSecurity http://www.welivesecurity.com/2017/01/05/killdisk-now-targeting-linux-demands-250k-ransom-cant-decrypt/ 64 comments
- GitHub - Ne0nd0g/merlin: Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang. https://github.com/Ne0nd0g/merlin 58 comments
- New SysJoker Backdoor Targets Windows, Linux, and macOS - Intezer https://www.intezer.com/blog/malware-analysis/new-backdoor-sysjoker/ 57 comments
- GitHub - citronneur/pamspy: Credentials Dumper for Linux using eBPF https://github.com/citronneur/pamspy 52 comments
Would you like to stay up to date with Unix? Checkout Unix
Weekly.
Related searches:
Search whole site: site:github.com
Search title: GitHub - timb-machine/linux-malware: Tracking interesting Linux (and UNIX) malware. Send PRs
See how to search.