Tag: network

• Sep 24, 2024

  WARMCOOKIE Incident Walk-Through

  This walk-through will be dissecting a WARMCOOKIE infection chain from the perspective of a network packet capture and Suricata alerts. The various artefacts for this incident are kindly provided by @malware_traffic and located at malware-traffic-analysis.net.

• Oct 9, 2023

  Carving the IcedId

  In a world dominated with endpoint detection and response agents, coming across PCAP may be a rare occurrence.