4n6 Lab, Part 1
Forensics investigation of a ransomware incident on a Windows workstation. From initial access via a fake IT support call to full kill chain reconstruction.
#forensics
#incident-response
#ransomware
#windows
#cobalt-strike
Personal blog where I document security investigations and things I find interesting.
security web3 blockchain forensic blueteaming
latest posts
all posts →A case of Shai-Hulud
Digging into the source code of Shai-Hulud, a self-propagating npm worm built for GitHub Actions and CI/CD environments.
#malware
#supply-chain
#github-actions
#npm
A case of etherRat
Digging into EtherRAT, a Node.js backdoor found in the wild that stores its C2 address on the Ethereum blockchain.
#malware
#forensics
#investigation
#blockchain