By corelight
A plugin to find Windows executables that have been XOR encoded.
Detects Zerologon (CVE-2020-1472) attempts and exploits.
A Zeek Unit Testing Framework
Page 11 of 11, showing 3 record(s) out of 203 total