Volatility 3.0 development. Contribute to volatilityfoundation/volatility3 development by creating an account on GitHub.

So excited about this one: Microsoft 365 management in Datto RMM is rolling out now! You can now manage all your tenants and Azure AD users from our console…

Adding new Winpmem drivers Adding yarascan plugin Some minor code fixes

Join us for monthly hacking demonstrations, malware analysis, cybersecurity headlines and more. View previous episodes and register for future sessions.

Our team is tracking in-the-wild exploitation of a zero-day vulnerability against Progress' MOVEit Transfer web application that allows for escalated privileges and unauthorized access.

Allows you to quickly query a Windows machine for RAM artifacts - gleeda/memtriage

Replay RDP traffic from PCAP. Contribute to ctxis/RDP-Replay development by creating an account on GitHub.

Huntress is tracking CVE-2023-23397, a 0-day that impacts Microsoft Outlook and requires no user interaction to expose user credential hashes.

With the FBI's takedown of Qakbot malware, we're sharing how the Huntress team developed our own Qakbot vaccine and our commitment to defend forward.

Can we use anomalous user agents to detect potential business email compromise (BEC) in Microsoft 365? Explore what we found through threat hunting for BEC.

Discover how Huntress MDR for Microsoft 365 identified three business email compromise (BEC) attacks within 72 hours of each other.

The 3CX VoIP Desktop Application has been compromised to deliver malware via legitimate 3CX updates. Huntress has been investigating this incident and working to validate and assess the current...

On 02 February 2023, an alert triggered in a Huntress-protected environment. We dive into triaging the threat in this blog.

Our team is tracking in-the-wild exploitation of a zero-day vulnerability against Progress' MOVEit Transfer web application that allows for escalated privileges and unauthorized access.

What does it take to be a threat hunter? In the third and final episode of Behind the Hunt, explore the methodical and rigorous process of real-world threat ...

Huntress has observed new behaviors in conjunction with the malware SocGholish. Read on to understand the implications of this threat and how you can better protect yourself.

Tanium is one of the 100 Best Companies to Work For ranking by Great Place to Work® and Fortune magazine. Boost your career by joining Tanium.

We're seeing a rise in Qakbot activity. Here's what you need to know to keep your environments safe.

The journey into Cybersecurity is not one-size-fits-all but can vary from person to person. There are also several subfields within Cybersecurity that one may concentrate on, leaving many opportuni...

Nicole Beckwith wears a lot of hats. She’s a programmer, incident responder, but also a cop and a task force officer with the Secret Service. In this episode sh

Hop behind the proverbial shoulders of one of our ThreatOps analysts and vicariously experience a day in his life.

Dive into the latest tradecraft, tactics, and trends to stay a step ahead of adversaries targeting businesses like yours with Huntress' 2024 Cyber Threat Report.