open-menu
closeme
Cloudflared Tunnel Connections Cleanup
calendar
May 17, 2023
·
attack.command_and_control
attack.t1102
attack.t1090
attack.t1572
·
Share on:
twitter
facebook
linkedin
copy
Cloudflared Tunnel Execution
calendar
May 17, 2023
·
attack.command_and_control
attack.t1102
attack.t1090
attack.t1572
·
Share on:
twitter
facebook
linkedin
copy
New Port Forwarding Rule Added Via Netsh.EXX
calendar
Apr 20, 2023
·
attack.lateral_movement
attack.defense_evasion
attack.command_and_control
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
RDP Port Forwarding Rule Added Via Netsh.EXE
calendar
Feb 16, 2023
·
attack.lateral_movement
attack.defense_evasion
attack.command_and_control
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
PUA- IOX Tunneling Tool Execution
calendar
Feb 8, 2023
·
attack.command_and_control
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
PUA - NPS Tunneling Tool Execution
calendar
Feb 6, 2023
·
attack.command_and_control
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
HackTool - Htran/NATBypass Execution
calendar
Feb 4, 2023
·
attack.command_and_control
attack.t1090
attack.s0040
·
Share on:
twitter
facebook
linkedin
copy
PUA - Fast Reverse Proxy (FRP) Execution
calendar
Feb 4, 2023
·
attack.command_and_control
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
Communication To Ngrok Tunneling Service
calendar
Feb 1, 2023
·
attack.exfiltration
attack.command_and_control
attack.t1567
attack.t1568.002
attack.t1572
attack.t1090
attack.t1102
attack.s0508
·
Share on:
twitter
facebook
linkedin
copy
Communication To Ngrok Tunneling Service - Linux
calendar
Feb 1, 2023
·
attack.exfiltration
attack.command_and_control
attack.t1567
attack.t1568.002
attack.t1572
attack.t1090
attack.t1102
attack.s0508
·
Share on:
twitter
facebook
linkedin
copy
Ngrok Usage with Remote Desktop Service
calendar
Feb 1, 2023
·
attack.command_and_control
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
Suspicious TCP Tunnel Via PowerShell Script
calendar
Feb 1, 2023
·
attack.command_and_control
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
Connection Proxy
calendar
Oct 25, 2022
·
attack.defense_evasion
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
PortProxy Registry Key
calendar
Oct 9, 2022
·
attack.lateral_movement
attack.defense_evasion
attack.command_and_control
attack.t1090
·
Share on:
twitter
facebook
linkedin
copy
to-top