CyberChef Tutorials
Advanced Cyberchef Techniques - Defeating Nanocore Obfuscation With Math and Flow Control
Applying Flow Control and Mathematical operators to deobfuscate a .vbs loader for Nanocore malware.
CyberChef Tutorials
Applying Flow Control and Mathematical operators to deobfuscate a .vbs loader for Nanocore malware.
How To Use CyberChef
Decoding a Cobalt Strike script with CyberChef and VsCode.
Threat Intelligence Guides
Tracking APT SideWinder Domains With Regular Expressions, Whois Records and Domain Registrars
Threat Intelligence Guides
Tracking Malware Infrastructure Through Subdomain Analysis
Threat Intelligence Guides
Identifying malicious infrastructure through hardcoded TLS Certificates and Subdomains.
Threat Intelligence Guides
Finding phishing domains passive DNS tooling and 302 redirects.
Threat Intelligence Guides
Leveraging Passive DNS to identify APT infrastructure. Building on public intelligence reports.
Threat Intelligence Guides
Malware Infrastructure Tracking Using Passive DNS Intelligence.
Malware Analysis Tutorials
Identifying and Removing Obfuscation in a Self-Referencing Latrodectus Loader
Malware Analysis Tutorials
Advanced CyberChef techniques using Registers, Regex and Flow Control
Threat Intelligence Guides
Identifying malware infrastructure with the FOFA scanner.
Malware Analysis Tutorials
Manual analysis of Cobalt Strike Shellcode with Ghidra. Identifying function calls and resolving API hashing.