This subdomain hosted a searchable interface and PDF viewer for the APTnotes threat-report archive, between roughly 2015 and 2019. It made it easy to read the FireEye, Mandiant, Crowdstrike, Kaspersky, and ESET PDFs that piled up on the canonical APTnotes GitHub repo, without having to clone it locally.
The viewer is no longer running. The archive itself, however, is still maintained.
where the canonical project lives
The original archive is and always has been on GitHub:
- github.com/aptnotes/data - the actual archive: hundreds of APT-vendor PDF reports, indexed by year, with a YAML manifest.
- github.com/kbandla/APTnotes - the original APTnotes repository before the project moved to
aptnotes/data. Now archived but still useful for historical context.
If you arrived here from a footnote that linked to a specific PDF on aptnotes.malwareconfig.com, the file you're looking for is almost certainly in the data repo above, organized by year. The repo's README has a per-year index.
what changed since 2019
Several adjacent projects partially replaced the role this subdomain used to play:
- RedDrip7's APT_Digital_Weapon - Chinese-language APT report archive, broader vendor coverage than APTnotes.
- CyberMonitor / APT_CyberCriminal_Campagin_Collections - the most comprehensive single-repo collection of public APT analysis published since 2006.
- Malpedia (Fraunhofer FKIE) - structured, citation-grade family entries with curated PDF references.
- MITRE ATT&CK Groups - the de-facto canonical index of who did what, with citations into all of the above.
If you're starting fresh on a threat-actor investigation in 2026, the modern starting point is ATT&CK → Group page → cited reports, not a flat PDF archive. APTnotes is still useful for older campaigns where the canonical writeup predates ATT&CK coverage.
about this archive page
This page exists for two reasons: to keep the high-authority backlinks pointed at aptnotes.malwareconfig.com resolving to a 200, and to redirect the human reader who clicks one of those links to the canonical project with as little friction as possible.
This page is not maintained by the APTnotes contributors, by Florian Roth, or by anyone else with operational involvement in the live project. For substantive questions about the archive, open an issue on the aptnotes/data repo.
For questions about this page, email [email protected].
