IPC YOU: How the Cado Platform Reveals Attacker Command Outputs - Cado Security | Cloud Investigation
Tags
| attack-pattern: | Data Server - T1583.004 Server - T1584.004 Serverless - T1583.007 Serverless - T1584.007 Ssh - T1021.004 Sudo - T1169 |
Common Information
| Type | Value |
|---|---|
| UUID | 9156b2b4-8a16-4f06-a47e-bdec04a9f8e5 |
| Fingerprint | 2d8bad9a8f904b0b |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | March 29, 2023, 1:46 p.m. |
| Added to db | April 7, 2023, 7:16 a.m. |
| Last updated | Nov. 17, 2024, 12:58 p.m. |
| Headline | IPC YOU: How the Cado Platform Reveals Attacker Command Outputs |
| Title | IPC YOU: How the Cado Platform Reveals Attacker Command Outputs - Cado Security | Cloud Investigation |
| Detected Hints/Tags/Attributes | 31/1/16 |
Source URLs
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 281 | ✔ | — | https://www.cadosecurity.com/feed/ | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 180 | readme.md |
|
| Details | Domain | 72 | aws.amazon.com |
|
| Details | File | 1 | ipctempfile.log |
|
| Details | File | 1 | ipctempfile.txt |
|
| Details | File | 5 | staff.txt |
|
| Details | IPv4 | 88 | 169.254.169.254 |
|
| Details | IPv4 | 1 | 10.0.1.205 |
|
| Details | IPv4 | 1 | 10.0.1.82 |
|
| Details | IPv4 | 1 | 18.34.32.0 |
|
| Details | IPv4 | 1 | 3.5.64.0 |
|
| Details | IPv4 | 1 | 3.5.72.0 |
|
| Details | IPv4 | 1 | 52.218.0.0 |
|
| Details | IPv4 | 1 | 52.92.0.0 |
|
| Details | Url | 2 | http://169.254.169.254/latest/meta-data/network/interfaces/macs |
|
| Details | Url | 2 | https://aws.amazon.com/amazon-linux-2 |
|
| Details | Url | 1 | https://infosecwriteups.com/pentesting-cloud-part-1-open-to-the-public-ctf-walkthrough-aa4dae59ec4e |