What happens when legitimate DFIR tools are used for harm? Join Episode 6 of Command & Convo to see how threat actors misuse Velociraptor for C2 and how to hunt for these pivots. Date: Jan 9 Time: 1:00 PM EST Register:

ICMP Type 3 C2 channel I built a few months ago, now sharing for the first time. Written in Go, comes with numerous commands + can perform chunked data transfer with session management. See README for more deets 🖖 #ThreatHunting #InfoSec #RedTeam https://t.co/Naqn8Ez2zf

Had a great webcast on Friday discussing detection of tunneled C2 communication🤟 https://t.co/oIHmvNDCXF