This was a phenomenal breakdown of some novel Linux malware techniques.
https://www.elastic.co/security-labs/declawing-pumakit
https://www.elastic.co/security-labs/declawing-pumakit
Comments
(Also still a huge fan of ELK if you can swing the overhead/personnel to make it really good)