Threat Actors & Groups
Malware & Tools
Amadey (2) Argamal (1) Cobalt Strike (3) Cobalt Strike Beacon (2) Donut (1) FlutterShell (2) Fondue.exe (1) MSI (3) Metasploit (13) Metasploit Framework (3) NetSupport RAT (2) OnyxC2-Stealer (1) PsExec (9) RAT (1) RMM (1) Remcos RAT (2) SharkLoader (3) SprySOCKS (1) StealC (2) Umbrij (2) Windows-Update-Standalone-Installer-WUSA (1)
Vendors & Products
AWS (1) Anthropic (1) Apache ActiveMQ (3) Atlassian (1) Audiobookshelf (1) AutoGen Studio (4) Azure (1) Azure-Samples (1) ChatGPT (1) Check Point Mobile Access (1) Check Point Remote Access VPN (1) Check Point Spark Firewall (1) Check-Point (1) Check-Point-VPN (1) Chrome (1) Chromium-based browsers (1) Cisco (5) Cisco-ISE (1) Claude (1) Dalfox (2) Everest-Forms-Pro (1) FortiSandbox (1) Fortinet (6) Fortinet-firewalls (1) Fortinet-products (1) GitHub (3) GlobalProtect (2) Gmail (2) Gogs (5) Google (12) Google Workspace (2) Google-Ads (1) Google-Chrome (3) Google-Chrome-extensions (1) Google-Cloud (1) Google-Home (1) Gravity-SMTP-plugin (1) HP (1) HP-VoIP-Phones (1) Ivanti (1) Ivanti Sentry (4) Ivanti-products (1) Klue (1) LiteLLM (3) Mastra (1) Mastra-AI (1) Mastra-packages (1) Microsoft (17) Microsoft Defender (1) Microsoft-Account (1) Microsoft-Entra-ID (1) MicrosoftDocs (1) MobileIron Sentry (3) Next.js (3) Node.js (5) Oracle (1) Oracle PeopleSoft (2) Oracle PeopleSoft Enterprise PeopleTools (1) Oracle-WebLogic-Server (1) PAN-OS (4) Palo-Alto-Networks (2) PeopleTools (2) Perplexity AI (1) Prisma Access (2) Splunk (1) Splunk-AI-Toolkit (1) UEMS (2) WhatsApp (2) Windows-Server (1) Windows-Server-2016 (1) WordPress (2) npm (10) npm-packages (1)
ATT&CK Techniques (TTPs)
T1003 (1) T1005 (1) T1020 (1) T1021 (9) T1021.001 (2) T1021.002 (11) T1027 (4) T1027.001 (1) T1036 (7) T1036.005 (2) T1041 (7) T1052.001 (1) T1053 (2) T1053.003 (1) T1053.005 (1) T1055 (5) T1055.001 (1) T1056.004 (1) T1059 (41) T1059.001 (5) T1059.002 (1) T1059.003 (2) T1059.004 (5) T1059.005 (2) T1059.006 (4) T1059.007 (4) T1068 (8) T1070 (2) T1071 (12) T1071.001 (8) T1071.004 (1) T1078 (8) T1078.004 (4) T1082 (1) T1090 (3) T1090.003 (2) T1095 (1) T1098 (6) T1098.003 (1) T1098.005 (1) T1105 (10) T1106 (1) T1110 (8) T1110.001 (2) T1115 (1) T1125 (1) T1136 (2) T1136.001 (1) T1136.002 (1) T1140 (1) T1176 (2) T1185 (1) T1187 (1) T1190 (38) T1195 (3) T1195.001 (5) T1203 (3) T1204 (11) T1204.002 (7) T1210 (3) T1218 (4) T1218.007 (2) T1218.011 (2) T1219 (2) T1485 (1) T1486 (4) T1496 (1) T1497 (1) T1499 (1) T1505 (2) T1505.003 (2) T1526 (1) T1528 (3) T1537 (1) T1539 (3) T1543 (2) T1543.001 (2) T1543.004 (1) T1547 (7) T1547.001 (5) T1547.006 (1) T1547.013 (1) T1548 (5) T1548.010 (1) T1552 (4) T1552.001 (4) T1553 (1) T1553.002 (1) T1553.005 (1) T1555.003 (1) T1557 (2) T1557.001 (4) T1558 (1) T1558.003 (5) T1562 (3) T1562.001 (2) T1562.008 (2) T1565.001 (1) T1566 (15) T1566.001 (4) T1566.002 (12) T1567 (2) T1570 (1) T1573.002 (1) T1574.002 (1) T1583 (1) T1583.001 (1) T1583.003 (1) T1584 (1) T1588.002 (1) T1590 (1) T1590.005 (1) T1593 (1) T1593.001 (1) T1595 (2) T1595.002 (2) T1598 (1) T1598.003 (1) T1609 (1) T1649 (2)
Vulnerabilities (CVEs)
CVE-2020-1472 (1) CVE-2024-21182 (1) CVE-2025-20701 (1) CVE-2025-48595 (1) CVE-2026-0257 (6) CVE-2026-10520 (4) CVE-2026-10523 (4) CVE-2026-11645 (1) CVE-2026-20245 (1) CVE-2026-20253 (2) CVE-2026-20262 (1) CVE-2026-3300 (2) CVE-2026-33825 (1) CVE-2026-35273 (3) CVE-2026-35616 (1) CVE-2026-3844 (1) CVE-2026-39987 (1) CVE-2026-4020 (1) CVE-2026-42271 (1) CVE-2026-43499 (1) CVE-2026-46242 (2) CVE-2026-48282 (1) CVE-2026-50656 (1) CVE-2026-50751 (1)
Threat Categories
AI-Security (2) AI-coding-agents (2) Agentjacking (1) Credential-Theft (1) Data-Breach (2) Extortion (1) Financial-Crime (1) GuardFall (1) Infrastructure-Security (1) Insider-Threat (1) Network-Breach (1) Phishing (1) Supply-Chain-Attack (1) Supply-Chain-Compromise (1) espionage (1) exploitation (1) information-stealer (1) malicious-code-execution (1) malware (1) ransomware (4) shell-injection (1) supply-chain (1) vulnerability (1) vulnerability-exploitation (1) vulnerability-management (2)
Platform & OS
Sources
Other
AI agent (1) AI agent host (1) AI agent hosts (1) AI agents (1) APIs (1) CI/CD (5) CI/CD environments (2) Cal-Water (1) Cyber-Security-News (37) Endpoint (1) Government (1) Kerberos (1) LDAP (4) MCP WebSocket (4) Network (1) Novo-Nordisk (1) OAuth (1) Polymarket (1) SSH (2) Sicoob (1) Sicoob.Sdk (1) Tor (3) WeTransfer (1) Web (1) Web applications (1) Web-Application-Vulnerability (1) WebDAV (3) build environments (1) consumer endpoints (1) detection-engineering (42) developer endpoints (1) developer environments (1) developer systems (2) developer workstations (2) enterprise networks (1) federal-agencies (1) kql (42) local web services (1) messaging apps (1) software development environments (1) swagger.json (1) web browsers (1)