PureLogs Forensics

July 2, 2025 Yanac

I analyzed some PureLogs malware infections this morning and found some interesting behavior and artifacts that I want to share. PureLogs infections sometimes start with a dropper/downloader that retrieves a .pdf file from a legitimate website. The dropper I will demo here downloaded this file: hxxp[…]NETRESEC Network Security BlogRead More

CVE-2025-27025 | Infinera G42 up to 7.0 Endpoint insufficient permissions or privileges (EUVD-2025-19706)
openPenny: Developing an Open-Source Tool for Detecting Non-Spoofed Traffic