Hello everyone,
For those who don't know, I'm the creator of the website Ransomware.live, and I'm excited to share some major updates and improvements I've been working on over the past few months:
- Major Code Overhaul: I’ve rewritten 80% of the code to enhance efficiency and performance. This should result in a smoother and faster experience for everyone using the platform.
- Integration of TTPs: I’ve integrated Tactics, Techniques, and Procedures (TTPs) from the Ransomware Tool Box, thanks to the valuable contributions from my friend Will. This addition provides more comprehensive insights into ransomware operations.
- Adding YARA Rules: YARA rules have been added from various reliable sources, strengthening the platform’s ability to help to detect and analyze ransomware threats.
- Database Expansion: The database now includes ransomware attacks dating back to before 2021. This expansion offers a more historical perspective on ransomware activity, allowing for deeper analysis and trend tracking.
- API Milestone: The API has reached over 3 million requests in the first half of 2024! It now includes detailed information on victim activity, geographical data, and infostealer information associated with victim's domain. RSS feed remains active and continues to update.
- New Negotiation Chats: I’ve added new ransomware negotiation chats, offering more case studies and insights into the negotiation process between victims and attackers. Some surprised inside for whom is interested :)
- Timeline Graphs: I’ve also created timeline graphs to visualize ransomware trends from 2017 to the present day. These visualizations provide a clearer view of how each ransomware activity has evolved over time.
As always, I want to extend a special thank you to
Finally, I want to remind everyone that Ransomware.live is open source. You're all welcome to contribute, whether through code, ideas, or intelligence. Let’s work together to make the platform even better!
Julien