Digital Operatives is proud to release to the public for Research Purposes Only beta version of PAINT, Process Attribution In Network Traffic. PAINT is a standalone application that works alongside Wireshark to analyze process attribution data.
- Exploiting Weak Shellcode Hashes to Thwart Module Discovery; or, Go Home, Malware, You’re Drunk!
- Unintended Consequences of Equation Group Malware
- HAVOC – Halting Attacks Via Obstructing Configurations – Part One
- New World Order – When Databases Collide
- Ghost in the Shellcode 2015 Write-up, Forensics 200: “CloudFS”