HPE Software Blog: Security Research
Share |

Where's wald0: Sniffing out the BloodhoundOpen in a New Window

 

r10.png

Detecting Active Directory enumeration will help you find malicious activity during the early phases, allowing the SOC to respond before the attackers get too far in the network. Focusing on the method of enumeration instead of the tools itself, allows the defenders to deal with changes in tools and code without changing the detection mechanism.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – November 4, 2016Open in a New Window

OSINT.jpg

Welcome to the November 4 edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – October 28, 2016Open in a New Window

OSINT.jpg

Welcome to the October 28th edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

Virus Bulletin 2016 presentation on GPS spoofing and countermeasuresOpen in a New Window

gps.jpg

On October the 7th, I gave a presentation at the Virus Bulletin 2016 conference held in Denver, CO about GPS spoofing attacks which can be carried out on a short-string budget. The time for the presentation was limited and allowed me to only briefly touch on many interesting topics. One of the topics I wasn't able to talk about at the conference is advanced GPS signal overpowering methods, which is discussed in this blog.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – October 21, 2016Open in a New Window

OSINT.jpg

Welcome to the October 21st edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

Advanced Persistent Threats debunked: Pay attention to the man behind the curtainOpen in a New Window

lifecycle.jpg

The term Advanced Persistent Threat--more commonly referred to by its abbreviation, APT--has become one of the most misused terms in the information security community. Those who do not work in this realm tend to take the term at face value, usually in the context of explaining how a company’s tools are able to detect new “advanced” techniques that may be used by any type of attacker. In fact, these attackers are the “threat” referred to in the term APT. Read more...

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – October 14, 2016Open in a New Window

OSINT.jpg

Welcome to the October 14th edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – October 7, 2016Open in a New Window

OSINT.jpg

Welcome to the October 7th edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – September 30, 2016Open in a New Window

OSINT.jpg

Welcome to the September 30th edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – September 23, 2016Open in a New Window

 

OSINT.jpg

Welcome to the September 23rd edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – September 16, 2016Open in a New Window

OSINT.jpg

Welcome to the September 16th edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

CryptoDrop: No Ransomware PanaceaOpen in a New Window

HPE20160526001.jpgRansomware malware has gained rapid notoriety as the cybercrime groups codify the successful "hold-for-ransom" business model by encrypting data files of unsuspecting users.

 

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – September 9, 2016Open in a New Window

OSINT.jpg

Welcome to the September 9th edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – September 2, 2016Open in a New Window

OSINT.jpg

Welcome to the September 2nd edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

“9002 RAT” -- a second building on the leftOpen in a New Window

rat.jpg

Recently we’ve seen a number of reports related to 9002 remote access Trojan (RAT). The Trojan drops a PowerPoint presentation that contains details about the 2nd Myanmar Industrial Human Resource Development Symposium.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – August 26, 2016Open in a New Window

OSINT.jpg

Welcome to the August 26th edition of the HPE Security Research OSINT articles of interest. This is a list of publicly available articles that we find relevant in today's security news.

 

A FalseCONNECT sense of security?Open in a New Window

falseconnect.png

You have followed the advice of privacy and security experts. You’ve disabled SMS and are using an encrypted text-only chat service. You route your traffic through anonymizing proxies. You only visit HTTPS websites. You know that if you don’t see https:// and a lock in the address bar to not continue. You believe you are safe. Or are you? 

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – August 12, 2016Open in a New Window

OSINT.jpg

Welcome to the August 12th edition of the HPE Security Research OSINT articles of interest. This is a list of publically available articles that we find relevant in today's security news.

 

HPE Security Research OSINT (OpenSource Intelligence) articles of interest – August 5, 2016Open in a New Window

OSINT.jpgWelcome to the August 5th edition of the HPE Security Research OSINT articles of interest. This is a list of publically available articles that we find relevant in today's security news.

 

Introducing Maltese: An Open Source Malware Traffic EmulatorOpen in a New Window

39543168r.jpg

Today, we release Maltese – an open source Malware Traffic Emulator that allows you to generate malicious traffic in order to test the effectiveness of malware detector solutions, currently focusing on DNS traffic.

Contact Us

Vivit Worldwide
P.O. Box 18510
Boulder, CO 80308

Email: info@vivit-worldwide.org

Mission

Vivit's mission is to serve
the Hewlett Packard
Enterprise User
Community through
Advocacy, Community,
and Education.