RedSocks Security MTD v3.6.2 Release New Web Interface

APT28 is a family of malware used in many recent cyber incidents. Incident response to this Advanced Persistent Threats (APT) and damage limitation heavily relies on network traffic investigation. Nevertheless, such efforts are usually blocked by technical difficulties. Source address information retrieved by flow analysis would not reveal any useful information regarding the APT target because the traffic by an APT malware are usually relayed through several proxies.

https://www.redsocks.eu/news/cracking-apt28-traffic-within-seconds-redsocks-security/