Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: Internet Storm Center Diary 2021-10-31 InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Video: Phishing ZIP With Malformed Filename

Published: 2021-10-31
Last Updated: 2021-10-31 13:40:35 UTC
by Didier Stevens (Version: 1)
0 comment(s)

This is a video for my diary entry "Phishing ZIP With Malformed Filename", where I show how to use my zipdump.py tool to visualize the special characters inside malformed filenames.

Here is the output of my zipdump tool:

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com

0 comment(s)

Sysinternals: Autoruns and Sysmon updates

Published: 2021-10-31
Last Updated: 2021-10-31 08:31:27 UTC
by Didier Stevens (Version: 1)
0 comment(s)

Minor updates to Autoruns and Sysmon were published:

Autoruns v14.06

This Autoruns release fixes a crash happening for scheduled tasks containing spaces.
 
Sysmon v13.30

This Sysmon update adds user fields for events, fixes a series of crash-causing bugs - for example with the Visual Studio debugger - and improves memory usage and management in the driver.

Didier Stevens
Senior handler
Microsoft MVP
blog.DidierStevens.com

Keywords: sysinternals update
0 comment(s)
Diary Archives