Unsorted internet resources about the UNC2452 campaign (Sunburst/SolarWinds Orion Backdoor)
https://github.com/fireeye/sunburst_countermeasures
https://github.com/Neo23x0/signature-base
https://github.com/davisshannon/Splunk-Sunburst
https://github.com/perfect4sec/IoC_UNC2452_SUNBURST/blob/main/IoC_UNC2452_SUNBURST
https://www.splunk.com/en_us/blog/security/sunburst-backdoor-detections-in-splunk.html
https://www.extrahop.com/company/blog/2020/detect-and-respond-to-sunburst/