Threat hunting

The Red Canary Blog

Security teams need an ally to help defend against adversaries. Check out our blog for tips on increasing visibility, expanding detection coverage, and improving information security.
Clipping Silver Sparrow’s wings: Outing macOS malware before it takes flight
Microsoft Exchange server exploitation: how to detect, mitigate, and stay calm
Topics (1)
What is normal? Profiling System32 binaries to detect DLL Search Order Hijacking
Hunting for GetSystem in offensive security tools
Privilege escalation revisited: webinar highlights
Detection Déjà Vu: a tale of two incident response engagements
Black Hat: Detecting the unknown and disclosing a new attack technique
Tracking driver inventory to unearth rootkits
A Pastebin scraper, steganography, and a persistent Linux backdoor
Threat Hunting in Linux for Indicators of Rocke Cryptojacking
We’re always looking for new experts to contribute interesting perspectives and improve our blog. Email us at with article pitches, feedback, or just to say hello!

Subscribe to our blog