AUTHOR

Articles by Elastic Security Labs

Videos

ICEDID Configuration Extractor

Python script to extract the configuration from ICEDID samples.

Videos

EMOTET Configuration Extractor

Python script to extract the configuration from EMOTET samples.

Videos

Sneak Peek: Elastic’s 2022 Global Threat Report

Elastic Security Labs has compiled the 2022 Global Threat Report to share trends and tactics adversaries and attack groups use, as observed by our threat research team and broader user community over the past year.

Videos

PARALLAX Payload Extractor

Python script to extract the payload from PARALLAX samples.

Videos

QBOT Configuration Extractor

Python script to extract the configuration from QBOT samples.

Videos

BLISTER Configuration Extractor

Python script to extract the configuration and payload from BLISTER samples.

Videos

BPFDoor Configuration Extractor

Configuration extractor to dump out hardcoded passwords with BPFDoor.

Videos

BPFDoor Scanner

Python script to identify hosts infected with the BPFDoor malware.

Videos

Cobalt Strike Beacon Extractor

Python script that collects Cobalt Strike memory data generated by security events from an Elasticsearch cluster, extracts the configuration from the CS beacon, and writes the data back to Elasticsearch.