application-triage-framework

Here are 2 public repositories matching this topic...

Compcode1 / ioc4-unsigned-executable

This case study focused on a low-profile intrusion attempt involving a standalone executable (patcher.exe) found in a writable but non-standard directory (C:\ProgramData\WinUpdate).

cybersecurity edr-telemetry unsigned-executable-detection application-triage-framework host-log-cross-reference-protocol

Updated May 11, 2025
Jupyter Notebook

Compcode1 / ioc-22-web-shell-upload

Star

This case demonstrates a classic but still deeply effective tactic: the use of an improperly validated file upload to implant a web shell. It wasn’t an exploit. It wasn’t a brute force attack. It was a misused feature — a vulnerable application logic path that let an attacker turn a web server into a foothold.

web-shell file-upload-vulnerability application-triage-framework php-exploitation cybersecurity-ioc

Updated May 23, 2025
Jupyter Notebook

Improve this page

Add a description, image, and links to the application-triage-framework topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the application-triage-framework topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly