From 38c2ccb9ffaf04aaddefd3849355f9e0a7ad887e Mon Sep 17 00:00:00 2001
From: Adel K <adel.net@gmail.com>
Date: Sun, 13 Sep 2020 15:56:27 +1000
Subject: [PATCH] Update README.md

Updated C2 section
---
 README.md | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/README.md b/README.md
index 61cc971..b50211c 100644
--- a/README.md
+++ b/README.md
@@ -193,9 +193,12 @@
 #### Command and Control
 
 - [Rise of Legitimate Services for Backdoor Command and Control](docs/legit-services.pdf)
+- [Watch Your Containers](https://www.intezer.com/container-security/watch-your-containers-doki-infecting-docker-servers-in-the-cloud/) - A malware using DogeCoin based DGA to generate C2 domain names.
+
 ##### DoH
 - [Hiding in Plain Sight](https://blog.huntresslabs.com/hiding-in-plain-sight-part-2-dfec817c036f) - A malware abusing Google DoH
-- 
+- [All the DoH](https://twitter.com/stvemillertime/status/1196788709292687360) - A Twitter thread on malware families and utilities that use DNS-over-HTTPS.
+
 
 
 #### Osquery