ioc[.]one - OSINT Cyber Threat Intelligence Database

Bluepurple Pulse: week ending August 13th

Tags

country:	Afghanistan Bangladesh Bhutan Brazil Malaysia Cambodia China Czechia North Korea Nepal Germany Hong Kong India Iran Pakistan Israel Japan Thailand Laos Philippines Russia Vietnam Taiwan United States Of America
maec-delivery-vectors:	Watering Hole
attack-pattern:	Data Indirect Model Models Adversary-In-The-Middle - T1638 Adversary-In-The-Middle - T1557 Artificial Intelligence - T1588.007 Botnet - T1583.005 Botnet - T1584.005 Cloud Account - T1087.004 Cloud Account - T1136.003 Credentials - T1589.001 Defacement - T1491 Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Firmware - T1592.003 Hardware - T1592.001 Ip Addresses - T1590.005 Malware - T1587.001 Malware - T1588.001 Phishing - T1660 Phishing - T1566 Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Software - T1592.002 Ssh - T1021.004 Tool - T1588.002 Vulnerabilities - T1588.006 Connection Proxy - T1090

Show in Graph

Common Information

Type	Value
UUID	b248a1f4-5620-46c8-b513-c4055d7c918e
Fingerprint	a790999589b68f89
Analysis status	DONE
Considered CTI value	1
Text language
Published	Aug. 10, 2023, midnight
Added to db	Aug. 13, 2023, 10:14 a.m.
Last updated	Nov. 17, 2024, 7:44 p.m.
Headline	Cyber Defence Analysis for Blue & Purple Teams
Title	Bluepurple Pulse: week ending August 13th
Detected Hints/Tags/Attributes	193/3/62

Source URLs

	Redirection	Url
Details	Source	https://bluepurple.binaryfirefly.com/p/bluepurple-pulse-week-ending-august-0f8

URL Provider

Details	Provider	Source level domain
Details	binaryfirefly.com	bluepurple.binaryfirefly.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	76	✔	Cyber Defence Analysis for Blue & Purple Teams	https://bluepurple.binaryfirefly.com/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	Value
Details	CVE	24	cve-2022-40982
Details	CVE	152	cve-2023-3519
Details	Domain	1	www.reset.tech
Details	Domain	101	www.group-ib.com
Details	Domain	14	www.guidepointsecurity.com
Details	Domain	1	www.dsinternals.com
Details	Domain	8	blog.projectdiscovery.io
Details	Domain	4127	github.com
Details	Domain	98	www.secureworks.com
Details	Domain	1	dfir.pubpub.org
Details	Domain	2	bootloaders.io
Details	Domain	1	foundries.io
Details	Domain	22	security.googleblog.com
Details	Domain	67	citizenlab.ca
Details	Domain	21	advisory.splunk.com
Details	Domain	22	www.bsi.bund.de
Details	Domain	2	dropbox.tech
Details	Domain	1	www.sysnet.ucsd.edu
Details	Domain	2	www.elttam.com
Details	Domain	154	arxiv.org
Details	Domain	37	cofense.com
Details	Domain	1	danielplohmann.github.io
Details	Domain	1	synthesis.to
Details	Domain	20	research.nccgroup.com
Details	Domain	12	bishopfox.com
Details	File	1	age.pdf
Details	File	1	dfir.pub
Details	File	1	pixel-binary-transparency-verifiable.html
Details	File	1	2023-249034-1032.html
Details	File	50	www.sys
Details	File	1	fireeye-cset23.pdf
Details	File	1	mcrit_blocks.html
Details	File	1	api_functions.html
Details	Github username	25	projectdiscovery
Details	Github username	3	cyb3r-monk
Details	Github username	1	ace-responder
Details	Github username	13	bishopfox
Details	Url	1	https://www.reset.tech/resources/come-for-the-memes-stay-for-the-kremlin-propaganda
Details	Url	2	https://www.group-ib.com/blog/mysterious-team-bangladesh
Details	Url	4	https://www.guidepointsecurity.com/blog/tunnel-vision-cloudflared-abused-in-the-wild
Details	Url	1	https://www.dsinternals.com/en/dpapi-backup-key-theft-auditing
Details	Url	1	https://blog.projectdiscovery.io/hunting-c2-servers
Details	Url	1	https://github.com/projectdiscovery/nuclei-templates/tree/main/ssl/c2?ref=blog.projectdiscovery.io
Details	Url	1	https://github.com/cyb3r-monk/accd/blob/main/hunting
Details	Url	2	https://github.com/cyb3r-monk/accd
Details	Url	1	https://www.secureworks.com/blog/sniffing-out-sharphound-on-its-hunt-for-domain-admin
Details	Url	1	https://dfir.pubpub.org/pub/6amsr72k/release/1
Details	Url	1	https://security.googleblog.com/2023/08/pixel-binary-transparency-verifiable.html
Details	Url	1	https://github.com/ace-responder/roguesliver
Details	Url	1	https://citizenlab.ca/2023/08/vulnerabilities-in-sogou-keyboard-encryption
Details	Url	1	https://advisory.splunk.com/advisories/svd-2023-0702
Details	Url	1	https://www.bsi.bund.de/shareddocs/cybersicherheitswarnungen/en/2023/2023-249034-1032.html
Details	Url	1	https://dropbox.tech/machine-learning/prompt-injection-with-control-characters-openai-chatgpt-llm
Details	Url	1	https://www.sysnet.ucsd.edu/~voelker/pubs/fireeye-cset23.pdf
Details	Url	1	https://www.elttam.com/blog/amazon-vpc-cni
Details	Url	1	https://arxiv.org/abs/2308.01074
Details	Url	1	https://cofense.com/blog/google-amp-the-newest-of-evasive-phishing-tactic
Details	Url	1	https://github.com/bishopfox/cve-2023-3519
Details	Url	1	https://danielplohmann.github.io/blog/2023/08/02/mcrit_blocks.html
Details	Url	1	https://synthesis.to/2023/08/02/api_functions.html
Details	Url	1	https://research.nccgroup.com/2023/07/20/tool-release-cartographer
Details	Url	1	https://bishopfox.com/blog/breaking-fortinet-firmware-encryption