TeamTNT Targeting AWS, Alibaba Logo

TeamTNT Targeting AWS, Alibaba

0
Free
Visit Website

TeamTNT is actively modifying its scripts after they were made public by security researchers. These scripts primarily target Amazon Web Services, but can also run in on-premise, container, or other forms of Linux instances. The group's payloads include credential stealers, cryptocurrency miners, persistence and lateral movement. TeamTNT scripts are also capable of disabling cloud security tools, such as Alibaba's aegis cloud security agent. The malware author modified these tools after they became aware that security researchers published the earlier version of the script. This intelligence is based on information provided by an intelligence partner.

FEATURES

ALTERNATIVES

Dynamic binary analysis library with various analysis and emulation capabilities.

A deserialization payload generator for .NET formatters

Find exploits in local and online databases instantly

A minimal library to generate YARA rules from JAVA with maven support.

A PowerShell obfuscation detection framework designed to highlight the limitations of signature-based detection and provide a scalable means of detecting known and unknown obfuscation techniques.

Intezer is a cloud-based malware analysis platform that detects and classifies malware using genetic code analysis.

Krakatau provides an assembler and disassembler for Java bytecode, supporting conversion, creation, examination, comparison, and decompilation of Java binaries.

YARA extension for Visual Studio Code with code completion and snippets

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2024 - All rights reserved