ioc[.]one - OSINT Cyber Threat Intelligence Database

How Memory Forensics Revealed Exploitation of Ivanti Connect Secure VPN Zero-Day Vulnerabilities

Tags

attack-pattern:

Data Confluence - T1213.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 Ssh - T1021.004 Tool - T1588.002 Vulnerabilities - T1588.006

Show in Graph

Common Information

Type	Value
UUID	7cd4a04d-922f-4512-babe-0666da75a139
Fingerprint	bcbfc99119a381a1
Analysis status	DONE
Considered CTI value	0
Text language
Published	Feb. 1, 2024, 4:59 p.m.
Added to db	Aug. 31, 2024, 10:27 a.m.
Last updated	Aug. 31, 2024, 10:27 a.m.
Headline	UNKNOWN
Title	How Memory Forensics Revealed Exploitation of Ivanti Connect Secure VPN Zero-Day Vulnerabilities
Detected Hints/Tags/Attributes	44/1/2

Source URLs

	Redirection	Url
Details	Source	https://www.volexity.com/blog/2024/02/01/how-memory-forensics-revealed-exploitation-of-ivanti-connect-secure-vpn-zero-day-vulnerabilities/

URL Provider

Details	Provider	Source level domain
Details	volexity.com	www.volexity.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	396	✔	Blog \| Threat Intelligence & Memory Forensics \| Volexity	https://www.volexity.com/blog/feed/	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	IPv4	3		98.160.48.170
Details	IPv4	3		173.220.106.166