ETDA สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์
Electronic Transactions Development Agency
Report
Search
Home > List all groups > List all tools > List all groups using tool Ngrok

Threat Group Cards: A Threat Actor Encyclopedia

Permanent link Tool: Ngrok

NamesNgrok
CategoryTools
TypeBackdoor, Tunneling
Descriptionngrok exposes local servers behind NATs and firewalls to the public internet over secure tunnels.
Information<https://ngrok.com/product>
<https://cyware.com/news/cyber-attackers-leverage-tunneling-service-to-drop-lokibot-onto-victims-systems-6f610e44>
<https://www.fireeye.com/blog/threat-research/2020/05/tactics-techniques-procedures-associated-with-maze-ransomware-incidents.html>
<https://www.malwarebytes.com/resources/files/2021/02/lazyscripter.pdf>
<https://www.zdnet.com/article/sly-malware-author-hides-cryptomining-botnet-behind-ever-shifting-proxy-service/>
MITRE ATT&CK<https://attack.mitre.org/software/S0508/>

Last change to this tool card: 30 December 2022

Download this tool card in JSON format

Previous: NFlog
Next: Nibatad

All groups using tool Ngrok

ChangedNameCountryObserved

APT groups

     ↳ Subgroup: Scattered Spider[Unknown]2022-Aug 2025 HOTX
 OPERA1ER[Unknown]2016-Jul 2023X
 Parisite, Fox Kitten, Pioneer KittenIran2017-Nov 2020 
 ToddyCatChina2020-2024 

4 groups listed (4 APT, 0 other, 0 unknown)

Digital Service Security Center
Electronic Transactions Development Agency

Follow us on

Facebook Twitter

Report incidents
Telephone +66 (0)2-123-1227
E-mail [email protected]