About this site
Home
Contact
About
Security projects
links
Services
Blog
SolarWinds Articles
Previous work
Work History
Projects
Past projects
Tools for detection and recovery
Retrieved 2021-06-16
Cyber EO May Move Software Supply Chain Security From Neutral to Highway Speed
(MeriTalk)
Retrieved 2021-05-07
US-UK Gov Warning: SolarWinds Attackers Add Open-Source PenTest Tool to Arsenal
(SecuritNEWS)
Retrieved 2021-04-09
DHS CISA Shares SolarWinds Post
(Threat Compromise Activity Tool)
Releases · cisagov/Sparrow
(GitHub)
CISA Launches New Threat Detection Dashboard
Retrieved 2021-04-08
Using Aviary to Analyze Post-Compromise Threat Activity in M365 Environments
(CISA)
Retrieved 2021-03-31
cyber.dhs.gov - Emergency Directive 21
(02)
Retrieved 2021-03-29
CISA Builds Out Defensive Tools for Security Teams
Retrieved 2021-03-25
Microsoft Safety Scanner Download - Windows security
(Microsoft Docs)
Retrieved 2021-03-23
CHIRP Tool to Detect SolarWinds Malicious Activity
Retrieved 2021-03-21
CISA releases CHIRP, a tool to detect SolarWinds malicious activitySecurity Affairs
CISA releases CHIRP, a tool to detect SolarWinds malicious activity
(TerabitWeb Blog)
Retrieved 2021-03-19
GitHub
(cisagov/CHIRP: A forensic collection tool written in Python.)
CISA Releases New Tool To Scan For SolarWinds Compromise Activity
(My TechDecisions)
Detecting Post-Compromise Threat Activity Using the CHIRP IOC Detection Tool
(CISA)
U.S. cyber agency releases tool to help SolarWinds Orion defenders
(IT World Canada News)
DHS CISA Shares Incident Response Tool for On
(Prem Threat Activity)
Did you get burned by the SolarWinds attack?US Releases Tools for Post-Infringement Detection
(Texas News Today)
Using CHIRP to Detect Post-Compromise Threat Activity in On-Premises Environments
(CISA)
Retrieved 2021-02-26
Microsoft Releases Queries for SolarWinds Attack Detection
Microsoft shares tool to hunt for compromise in SolarWinds breach
(CyberScoop)
Microsoft: We've open-sourced this tool we used to hunt for code by SolarWinds hackers
(ZDNet)
Microsoft releases open
(source CodeQL queries to assess Solorigate compromiseSecurity Affairs)
Microsoft makes CodeQL queries public post SolarWinds attack
MSFT Stock - Microsoft makes CodeQL queries public post SolarWinds attack
(Fintech Zoom - World Finance)
Retrieved 2021-02-25
Microsoft shares CodeQL queries to scan code for SolarWinds
(like implants)
Microsoft Releases Free Tool for Hunting SolarWinds ...
Retrieved 2020-12-23
CrowdStrike Launches Free Tool to Identify & Mitigate Risks in Azure Active Directory
(CrowdStrike)
Retrieved 2020-12-15
GitHub
(fireeye/sunburst_countermeasures)
Retrieved 2020-12-13
SolarWinds CyberAttack and FireEye Red Team Tools Coverage