Guardicore Labs Cyber Security Research Team | Guardicore

Guardicore Labs

Guardicore Labs is a global research team, consisting of hackers, cybersecurity researchers and industry experts. We publish our cyber security research and provide analysis, insights and response methodologies to the latest cyber threats as well as lead and participate in academic research. We are also the core maintainers of the Infection Monkey, a popular open-source network resiliency test tool

The Infection Monkey 1.10.0 — Go Bananas with New AWS Zero Trust Assessments

Zero Trust Assessment on the brain? Check out our new release of Infection Monkey which can help you navigate the the Zero Trust maturity Jungle.

April 12, 2021 No Comments

Purple Fox Rootkit Now Propagates as a Worm

Purple Fox, a malware campaign targeting Internet Explorer and Windows machines with various privilege escalation exploits, was discovered by Guardicore Labs. The new campaign tries to brute force its way into Windows machines via indiscriminate port scanning , spreading the Purple Fox malware and rootkit. Read the full report.

March 23, 2021 No Comments

IPCDump – Guardicore’s New Open-Source Tool for Linux IPC Inspection

Background Debugging is probably one of the most personal disciplines in software development. Some developers enjoy the ubiquity of gdb, while others prefer working from

February 10, 2021 No Comments

PLEASE_READ_ME: The Opportunistic Ransomware Devastating MySQL Servers

Guardicore Labs uncovers a sophisticated, multifunctional P2P botnet written in Golang and targeting SSH servers.

December 10, 2020 No Comments

WarezTheRemote: Turning Remotes into Listening Devices

WarezTheRemote: Turning Remotes into Listening Devices

Guardicore Labs uncovers a sophisticated, multifunctional P2P botnet written in Golang and targeting SSH servers.

October 7, 2020 No Comments

FritzFrog: A New Generation Of Peer-To-Peer Botnets

Executive Summary Guardicore has discovered FritzFrog, a sophisticated peer-to-peer (P2P) botnet which has been actively breaching SSH servers since January 2020. Golang-Based Malware: FritzFrog executes a

August 19, 2020 No Comments

@font-face{font-family:eicons;src:url("https://cdn-bjkoa.nitrocdn.com/mlIhCHRTfPubLxJNymRbEvENjulcCLLH/assets/static/source/rev-1f56556/wp-content/plugins/elementor/assets/lib/eicons/fonts/487fb88d73d41a26c611d95e94cc95a3.eicons.eot");src:url("https://cdn-bjkoa.nitrocdn.com/mlIhCHRTfPubLxJNymRbEvENjulcCLLH/assets/static/source/rev-1f56556/wp-content/plugins/elementor/assets/lib/eicons/fonts/487fb88d73d41a26c611d95e94cc95a3.eicons.eot#iefix") format("embedded-opentype"),url("https://cdn-bjkoa.nitrocdn.com/mlIhCHRTfPubLxJNymRbEvENjulcCLLH/assets/static/source/rev-1f56556/wp-content/plugins/elementor/assets/lib/eicons/fonts/487fb88d73d41a26c611d95e94cc95a3.eicons.woff2") format("woff2"),url("https://cdn-bjkoa.nitrocdn.com/mlIhCHRTfPubLxJNymRbEvENjulcCLLH/assets/static/source/rev-1f56556/wp-content/plugins/elementor/assets/lib/eicons/fonts/487fb88d73d41a26c611d95e94cc95a3.eicons.woff") format("woff"),url("https://cdn-bjkoa.nitrocdn.com/mlIhCHRTfPubLxJNymRbEvENjulcCLLH/assets/static/source/rev-1f56556/wp-content/plugins/elementor/assets/lib/eicons/fonts/487fb88d73d41a26c611d95e94cc95a3.eicons.ttf") format("truetype"),url("https://cdn-bjkoa.nitrocdn.com/mlIhCHRTfPubLxJNymRbEvENjulcCLLH/assets/static/source/rev-1f56556/wp-content/plugins/elementor/assets/lib/eicons/fonts/487fb88d73d41a26c611d95e94cc95a3.eicons.svg#eicon") format("svg");font-weight:400;font-style:normal;font-display:swap;}.comeet-outer-wrapper{padding:50px;}.comeet-list .comeet-positions-list .positions-row{display:inline-flex;}@media only screen and (max-width: 767px){.comeet-list .comeet-positions-list .positions-row{display:unset;}}@media only screen and (max-width: 767px){.comeet-list .comeet-positions-list .comeet-position-holder{width:100%;}}.comeet-list .comeet-positions-list .comeet-position-holder{display:flex;margin:1%;}.comeet-positions-list .comeet-position-holder a.comeet-position{width:100%;float:left;margin-bottom:3%;padding:20px;box-sizing:border-box;border:1px solid #d5d5d5;min-height:75px;border-radius:2px;box-shadow:0 1px 1px rgba(0,0,0,10%);}.comeet-positions-list .comeet-position-holder a.comeet-position:hover{box-shadow:0 .5rem 1rem rgba(0,0,0,.15) !important;}.comeet-position .comeet-position-name .position-location{display:block;color:#595969;font-size:18px;}.comeet-position .comeet-position-name .position-location:before{width:20px;height:30px;display:inline-block;content:"";background:url("https://cdn-bjkoa.nitrocdn.com/mlIhCHRTfPubLxJNymRbEvENjulcCLLH/assets/static/optimized/rev-1f56556/wp-content/uploads/location-icon-purple-croped-2.png") no-repeat left bottom;background-size:17px 30px;}.comeet-position .comeet-position-name .position-name{display:block;color:#595969;font-size:1.3em;font-weight:bold;}.comeet-position .comeet-position-meta .position-department{display:block;color:#595969;font-size:1.2em;margin-bottom:20px;}.comeet-position .comeet-position-meta .position-description{display:block;color:#595969;font-size:18px;}.comeet-positions-list .comeet-position-holder a.comeet-position span.purpleBtn{background:#7400ef;color:#fff !important;border-color:#7400ef;padding:5px 30px;font-weight:normal;display:inline-block;margin-top:20px;font-size:16px;}.wp-block-code{background-color:#000;color:#f6f23c;}.fa-angle-left:before{content:url("https://cdn-bjkoa.nitrocdn.com/mlIhCHRTfPubLxJNymRbEvENjulcCLLH/assets/static/source/rev-1f56556/wp-content/uploads/Vector-5.svg") !important;}p a:hover{color:#370a6f !important;}.elementor-text-editor li a:hover{color:#370a6f !important;}