T1592 – D E C E I V E R . I O

Deceive, Detect, Engage

Hunt 4 Glutton PHP Backdoor and Round

The attacker may have used the malware to check for antivirus-related processes running in the system.

Inside Water Barghests Rapid Exploit

Water Barghest actively scans the internet for vulnerable IoT devices, particularly those with known vulnerabilities or default credentials. Upon identifying a vulnerable device, they exploit it to gain initial access. This may involve exploiting vulnerabilities in web interfaces, using default or weak credentials, or leveraging unpatched software flaws.

Tag: T1592

Hunt 4 Glutton PHP Backdoor and Round

Inside Water Barghests Rapid Exploit

ORION Detlab: Forging Resilient Detections in the HEFAISTOS Ecosystem

The Maieutic Engine: Birth of a New Detection Engineering Paradigm

The Forge, The Guide, and The Hunter: Unifying Detection Engineering with the Mythological Triad of HEFAISTOS, KEDALION, and ORION

Dendrite: Bridging the Synaptic Gap Between External Intelligence and Internal Defense