Let Us Find Out Whodunit

Adam Goss
4 min readJan 11, 2023

Hey friend, welcome back!

Let’s take a look at a cool new tool that we can add to our threat hunting arsenal!

The tool we’re taking a look at today is called whodunit and its goal is adversary attribution.

Whodunit is a tool that can be used to identify the most likely Advanced Persistent Threat (APT) group responsible for an attack. The tool ingests a cyber security…

--

--

Adam Goss

Helping demystify cyber threat intelligence for businesses and individuals | CTI | Threat Hunting | Custom Tooling