Tag: Threat Hunting

All the articles with the tag "Threat Hunting".

• Hunting Beyond Indicators

  Published:Oct 17, 2025 |  at 08:57 PM

  I wrote a blog for THOR Collective on the value of hunting beyond Indicators of Compromise.

• Don't Cry Wolf - Evidence-based Assessments of ICS Threats

  Published:Oct 17, 2025 |  at 07:05 PM

  Jimmy Wylie's and my DEF CON'33 talk is now available on YouTube. We discuss the analytical rigor undertaken before claiming a capability is "ICS-specific malware" with some specific examples I found while threat hunting.

• PLC Password Cracking Malware

  Published:Jul 14, 2024 |  at 06:05 PM

  Read about my research on PLC password cracking software being sold online. Turns out, it also gives you a Sality malware infection. This research was covered in major tech journals!