![Quick Malware Analysis: TA551 / SHATHAK / IcedID / BOKBOT pcap from 2022-01-06 · Security-Onion-Solutions securityonion · Discussion #6842 · GitHub Quick Malware Analysis: TA551 / SHATHAK / IcedID / BOKBOT pcap from 2022-01-06 · Security-Onion-Solutions securityonion · Discussion #6842 · GitHub](https://user-images.githubusercontent.com/1659467/149162176-a6165eda-e005-4566-bb7e-3eb98761a9e9.png)
Quick Malware Analysis: TA551 / SHATHAK / IcedID / BOKBOT pcap from 2022-01-06 · Security-Onion-Solutions securityonion · Discussion #6842 · GitHub
Brad on Twitter: "@Ledtech3 Rules those URLs trigger: - ET POLICY Binary Download Smaller than 1 MB Likely Hostile - ET POLICY PE EXE or DLL Windows file download HTTP - ET
![Quick Malware Analysis: malware-traffic-analysis.net pcaps from 2021-06-02 · Security-Onion-Solutions securityonion · Discussion #5045 · GitHub Quick Malware Analysis: malware-traffic-analysis.net pcaps from 2021-06-02 · Security-Onion-Solutions securityonion · Discussion #5045 · GitHub](https://user-images.githubusercontent.com/1659467/128038141-19e43a40-5279-497c-bc21-1968162bc067.png)
Quick Malware Analysis: malware-traffic-analysis.net pcaps from 2021-06-02 · Security-Onion-Solutions securityonion · Discussion #5045 · GitHub
![Security Onion - Linux Distro For Intrusion Detection, Network Security Monitoring, And Log Management Security Onion - Linux Distro For Intrusion Detection, Network Security Monitoring, And Log Management](https://2.bp.blogspot.com/-UdEE-aIje3g/UoIkAL4qHBI/AAAAAAAABHU/TtmuDe-6R0w/s1600/Screen+Shot+2013-11-11+at+1.20.41+PM.png)
Security Onion - Linux Distro For Intrusion Detection, Network Security Monitoring, And Log Management
Sha256: 129569554b67a7be192a1a2bc5986337695b7676e347bb48473da4754ef479d7 - AlienVault - Open Threat Exchange
Meisam Eslahi, Ph.D. on LinkedIn: #cybermeisam #cybersecurity #threathunting #threatdetection… | 13 comments
![ids - intrusion prevention system detected "et policy pe exe" should i worry - Information Security Stack Exchange ids - intrusion prevention system detected "et policy pe exe" should i worry - Information Security Stack Exchange](https://i.stack.imgur.com/rb7Ra.png)