GitHub

neptune-networks/flow-exporter

Flow exporter is a tool that can take flow data (Netflow, sFlow, IPFIX) from Kafka and export it to Prometheus. These flow records can be helpful to visualize which autonomous systems traffic is ...
IEEE

Real-time analysis of NetFlow data for generating network traffic statistics using Apache Spark

Abstract: In this paper, we present a framework for the real-time generation of network traffic statistics on Apache Spark Streaming, a modern distributed stream processing system. Our previous ...
GitHub

Docker and Kubernetes assets for running SolarWinds Snap Agent

Use the containerized SolarWinds Snap Agent to monitor Docker or Kubernetes environments. Monitor Kubernetes cluster and application health. Aggregate metrics across clusters distributed across ...
SecurityWeek

CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

The US cybersecurity agency CISA on Thursday warned that recently disclosed SolarWinds, Notepad++, and Apple vulnerabilities have been exploited in the wild. Tracked as CVE-2025-40536 (CVSS score of 8 ...
TechRadar

Solarwinds WHD flaws exploited in attacks targeting servers and credentials

Hackers exploit SolarWinds Web Help Desk flaws CVE-2025-40551 and CVE-2025-26399 Attackers deploy Zoho ManageEngine, Cloudflare tunnels, Velociraptor for persistence and control Campaign ongoing since ...
Computer Weekly

Researchers delve inside new SolarWinds RCE attack chain

Researchers at Huntress Security have published data on the exploitation of a critical SolarWinds Web Help Desk (WHD) vulnerability, revealing how in at least three known incidents, attackers ...
techzine

Attackers exploit SolarWinds vulnerability to deploy ransomware

Security researchers warn of active attacks on SolarWinds Web Help Desk. Malicious actors are exploiting vulnerabilities to infiltrate systems and then deploy forensic tools as command-and-control ...
IEEE

Multimodal LLMs for Zero-Shot Intrusion Detection Using NetFlow Visualisations

Abstract: This paper presents a proof-of-concept framework integrating time-windowed NetFlow traffic visualisations with zero-shot inference from multimodal LLMs for network intrusion detection.
CSOonline

SolarWinds WHD zero-days from January are under attack

SolarWinds Web Help Desk (WHD) is under attack, with recent incidents exploiting a chain of zero-day and patched vulnerabilities dating back to late 2025, an analysis of customer reports by security ...
Dark Reading

SolarWinds WHD Attacks Highlight Risks of Exposed Apps

Threat actors are pouncing on new vulnerabilities in SolarWinds Web Help Desk (WHD), further illustrating the risks of applications exposed to the public Internet. SolarWinds WHD is an IT support and ...
theregister

Someone's attacking SolarWinds WHD to steal high‑privilege credentials - but we don't know who or how

Digital intruders exploited buggy SolarWinds Web Help Desk (WHD) instances in December to break into victims' IT environments, move laterally, and steal high-privilege credentials, according to ...
Microsoft

Analysis of active exploitation of SolarWinds Web Help Desk

The Microsoft Defender Research Team observed a multi‑stage intrusion where threat actors exploited internet‑exposed SolarWinds Web Help Desk (WHD) instances to get an initial foothold and then ...