linux-malware

Rolling 7 day view of updates from this repo

Press/academia

Breach reports

Supply chain attacks

Malware reports

Malware samples

Malware binaries

Malware source

Research, PoCs, capabilities etc

Not necessarily malicious code (see Linikatz and unix-privesc-check =)) but interesting capabilities…

Tools

Techniques

Sandboxes

Yara rules

Personal rules

  • ciscotools.yara – Hunts for references to our tools
  • aix.yara – Hunts for AIX binaries
  • adonunix2.yara – Hunts for binaries that attack AD on UNIX
  • enterpriseunix2.yara – Hunts for enterprise UNIX binaries
  • enterpriseapps2.yara – Hunts for enterprise app binaries
  • canvasspectre.yara – Hunts for CANVAS Spectre
  • unixredflags3.yara – Hunts for UNIX red flags
  • luckscan.yara – Hunts for references to luckscan
  • pscan.yara – Hunts for references to pscan

Other rules

GitHub

View Github