 |
Post Awjz0Muje8mHEV0EM4 by [email protected] |
 |
More posts by [email protected] |
|
Post #Awjo9yIMvzoAHMQwoC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Dammit. Now #GAYINT needs to step up and start doing TA logos with fancy backgr… |
|
|
|
Post #AwjvwLIRQ359C9TnYO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w I wish we had a more standardized naming convention for activity groups. … |
|
|
|
Post #AwjwSbi7vVzdMysYG8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe GAYINT is working on it. |
|
|
|
Post #Awjwh3cQxfpJyn6emW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w well, I have what I believe is a phishkit-as-a-service that doesn't s… |
|
|
|
Post #AwjxiAp9l42WZO9ZNA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe Yes!! We can definitely do that. Also, if you want any help digging… |
|
|
|
Post #Awjz0Muje8mHEV0EM4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w https://github.com/g0d33p3rsec/phishing/wiki/unknown-phishing-kit-cluster… |
|
|
|
Post #Awjz9Q1XSCYXU3V5LU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe Do you want to take that to DM in case anyone is monitoring? |
|
|
|
Post #AwjzhB4lXJlGyA6iSO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w I'm not too worried about tipping them off at this point. I initiall… |
|
|
|
Post #Awk00VF8mLtJ1GAux6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe I'll pass it on but I'm already away from my workstation fo… |
|
|
|
Post #Awk03uNFncklpWasOO by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w no rush. I've been toying with them for 2 years now =D |
|
|
|
Post #Awk074r9Hd7tD05WCW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe Oh damn. The patient long game. |
|
|
|
Post #Awk0djgB2WZN5NWqjw by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w I used them as a practical exercise to find my way towards CTI & thre… |
|
|
|
Post #Awk0s5ZuPuNV3fRPX6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe That's a nice way to sidestep that HR crap. Well done. |
|
|
|
Post #Ax8tA0DSW5zIj8PujY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w just a quick follow up with some recent samples. danmartin[.]ro was the … |
|
|
|
Post #Ax8xYfKjh7Sp16pvZw by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe Nice. Worth keeping an eye on for sure. |
|
|
|
Post #Ax8y23St3MaIG0fAEy by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w agreed. Pushing them to that repo also propagates back to VT, which usua… |
|
|
|
Post #Ax8zM3zctpb3dn566i by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@0xfeedc0fe Good luck. If you're trying to get them noticed, you can also s… |
|
|
|
Post #Ax8zM45eXQPvwTtuV6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w I'd be more interested in finding someone with visibility into the lo… |
|
|
|
Post #Ax8zmkpwEKDe30HEHI by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe Ah. Yeah, that's likely going to be a bit more difficult. Since… |
|
|
|
Post #Ax90NCC1zt9LJgzGqG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@cR0w no doubt, that's why I'm not as close to the vest with the indica… |
|
|
|
Post #Ax90WWoegtTzsrVHI8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@0xfeedc0fe Oh if there's are that many domains, @neurovagrant is the one t… |
|
|
|
Post #Ax90fji07qRETZmWh6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w @0xfeedc0fe Can confirm the four mentioned domains are scattered across a… |
|
|
|
Post #Ax90fjo1lRG6mGbL5U by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@neurovagrant I do have dates, but they're scattered around the different f… |
|
|
|
Post #Ax90wC00i4uUqo3JNQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@0xfeedc0fe @cR0w gotcha. that list looks like fun huntin, I will try to take a… |
|
|
|
Post #Ax90wC62LfjN9Us7lo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@neurovagrant awesome, many thanks. It would be nice to have some more experie… |
|
|
|
Post #Ax91LbOFRb8Sq4VPJw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@0xfeedc0fe @cR0w I know I should read the documentation before asking 20 quest… |
|
|
|
Post #Ax91LbUH5BxL8lKDiK by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@neurovagrant not that I can think of. The two lures to my student email came … |
|
|
|
Post #Ax91RWAnklRcOe2LoW by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@neurovagrant and I don't mind 20 questions, if that is more efficient for … |
|
|
|
Post #Ax93bGzBH4hk67NfYe by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@0xfeedc0fe @cR0w something stood out to me on the lure — insisting signing i… |
|
|
|
Post #Ax93bH5us25mR0X33Y by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@emory very interesting. Here's a host that has a pretty good variety of t… |
