Powering The Modern SOC: Seamlessly Integrated, AI-Empowered, Ahead of Threats. Aug 3-8
Let’s Meet at Black Hat USA
July 24, 2024
Russian attackers continue to bypass detection technologies with simplistic yet effective techniques. In this blog we examine a campaign targeting Ukraine leveraging email attachments less than 150 bytes, which seem to bypass certain tools.
June 27, 2024
The volume of Linux malware is orders of magnitude less than for other operating systems, and as such, has fewer eyeballs researching it. Analysts don't want to spend thousands of hours building detection systems for threats that they will never see. However, for an enterprising hunter, this lack of prevalence can work in your favor --- if your enterprise only sees one or two ELF email attachments per year, you can afford to give each a quick eyeball.
June 24, 2024
Russian Government hackers continue to leverage novel techniques for defeating automated analysis systems. In this blog, we examine a simple html trick for waiting for a user to jiggle the mouse before executing the malicious javascript.
May 29, 2024
In this blog, we examine the typical causes of Dangling DNS hijacking, and how we were able to ethically report issues at a major vendor
May 24, 2024
StrikeReady wins in three categories.
April 20, 2024
This is the first article in a series about technical hunting wins that are attainable by all SOC teams.
April 3, 2024
How StrikeReady helps you track APT infrastructure before it's used against your organization.
February 29, 2024
How StrikeReady helped a SOC prioritize alerts triggered by a previously untagged APT actor.
