Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Diary Blog Archive - SANS Internet Storm Center InfoSec Diary Blog Archive


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Search Diaries:


Archive Matrix

2003JanFebMarApr MayJunJulAugSepOctNovDec
2004JanFebMarAprMayJunJulAugSepOctNovDec
2005JanFebMarAprMayJunJulAugSepOctNovDec
2006JanFebMarAprMayJunJulAugSepOctNovDec
2007JanFebMarAprMayJunJulAugSepOctNovDec
2008JanFebMarAprMayJunJulAugSepOctNovDec
2009JanFebMarAprMayJunJulAugSepOctNovDec
2010JanFebMarAprMayJunJulAugSepOctNovDec
2011JanFebMarAprMayJunJulAugSepOctNovDec
2012JanFebMarAprMayJunJulAugSepOctNovDec
2013JanFebMarAprMayJunJulAugSepOctNovDec
2014JanFebMarAprMayJunJulAugSepOctNovDec
2015JanFebMarAprMayJunJulAugSepOctNovDec
2016JanFebMarAprMayJunJulAugSepOctNovDec
2017JanFebMarAprMayJunJulAugSepOctNovDec
2018JanFebMarAprMayJunJulAugSepOctNovDec
2019JanFebMarAprMayJunJulAugSepOctNovDec
2020JanFebMarAprMayJunJulAugSepOctNovDec
2021JanFebMarAprMayJunJulAugSepOctNovDec
2022JanFebMarAprMayJunJul

Archive Diary List

2022-1-01

DateAuthorTitle
2022-01-31Xavier MertensBe careful with RPMSG files (2 Comments)
2022-01-31Johannes UllrichISC Stormcast For Monday, January 31st, 2022 (oneliner) (0 Comments)
2022-01-30Didier StevensYARA's Console Module (0 Comments)
2022-01-29Guy BruneauSIEM In this Decade, Are They Better than the Last? (3 Comments)
2022-01-28Johannes UllrichISC Stormcast For Friday, January 28th, 2022 (oneliner) (0 Comments)
2022-01-28Xavier MertensMalicious ISO Embedded in an HTML Page (0 Comments)
2022-01-27Johannes UllrichApple Patches Everything (3 Comments)
2022-01-27Johannes UllrichISC Stormcast For Thursday, January 27th, 2022 (oneliner) (0 Comments)
2022-01-26Jan KoprivaOver 20 thousand servers have their iLO interfaces exposed to the internet, many with outdated and vulnerable versions of FW (0 Comments)
2022-01-26Johannes UllrichISC Stormcast For Wednesday, January 26th, 2022 (oneliner) (0 Comments)
2022-01-25Bojan ZdrnjaLocal privilege escalation vulnerability in polkit's pkexec (CVE-2021-4034) (0 Comments)
2022-01-25Brad DuncanEmotet Stops Using 0.0.0.0 in Spambot Traffic (0 Comments)
2022-01-25Johannes UllrichISC Stormcast For Tuesday, January 25th, 2022 (oneliner) (0 Comments)
2022-01-24Johannes UllrichISC Stormcast For Monday, January 24th, 2022 (oneliner) (0 Comments)
2022-01-22Xavier MertensMixed VBA & Excel4 Macro In a Targeted Excel Sheet (0 Comments)
2022-01-21Xavier MertensObscure Wininet.dll Feature? (1 Comments)
2022-01-21Johannes UllrichISC Stormcast For Friday, January 21st, 2022 (oneliner) (0 Comments)
2022-01-20Xavier MertensRedLine Stealer Delivered Through FTP (2 Comments)
2022-01-20Johannes UllrichISC Stormcast For Thursday, January 20th, 2022 (oneliner) (0 Comments)
2022-01-19Brad Duncan0.0.0.0 in Emotet Spambot Traffic (0 Comments)
2022-01-19Johannes UllrichISC Stormcast For Wednesday, January 19th, 2022 (oneliner) (0 Comments)
2022-01-18Jan KoprivaPhishing e-mail with...an advertisement? (1 Comments)
2022-01-18Johannes UllrichISC Stormcast For Tuesday, January 18th, 2022 (oneliner) (0 Comments)
2022-01-17Johannes UllrichLog4Shell Attacks Getting "Smarter" (0 Comments)
2022-01-17Johannes UllrichISC Stormcast For Monday, January 17th, 2022 (oneliner) (0 Comments)
2022-01-16Guy Bruneau10 Most Popular Targeted Ports in the Past 3 Weeks (0 Comments)
2022-01-14Johannes UllrichUse of Alternate Data Streams in Research Scans for index.jsp. (0 Comments)
2022-01-14Johannes UllrichISC Stormcast For Friday, January 14th, 2022 (oneliner) (0 Comments)
2022-01-13Johannes UllrichISC Stormcast For Thursday, January 13th, 2022 (oneliner) (0 Comments)
2022-01-12Johannes UllrichA Quick CVE-2022-21907 FAQ (1 Comments)
2022-01-12Johannes UllrichISC Stormcast For Wednesday, January 12th, 2022 (oneliner) (0 Comments)
2022-01-11Johannes UllrichMicrosoft Patch Tuesday - January 2022 (5 Comments)
2022-01-11Johannes UllrichISC Stormcast For Tuesday, January 11th, 2022 (oneliner) (0 Comments)
2022-01-10Johannes UllrichISC Stormcast For Monday, January 10th, 2022 (oneliner) (0 Comments)
2022-01-09Didier StevensExtracting Cobalt Strike Beacons from MSBuild Scripts (0 Comments)
2022-01-08Didier StevensTShark & jq (0 Comments)
2022-01-07Xavier MertensCustom Python RAT Builder (0 Comments)
2022-01-07Johannes UllrichISC Stormcast For Friday, January 7th, 2022 (oneliner) (0 Comments)
2022-01-06Xavier MertensMalicious Python Script Targeting Chinese People (3 Comments)
2022-01-06Johannes UllrichISC Stormcast For Thursday, January 6th, 2022 (oneliner) (0 Comments)
2022-01-05Xavier MertensCode Reuse In the Malware Landscape (0 Comments)
2022-01-05Johannes UllrichISC Stormcast For Wednesday, January 5th, 2022 (oneliner) (0 Comments)
2022-01-04Xavier MertensA Simple Batch File That Blocks People (0 Comments)
2022-01-04Johannes UllrichISC Stormcast For Tuesday, January 4th, 2022 (oneliner) (0 Comments)
2022-01-03Xavier MertensMcAfee Phishing Campaign with a Nice Fake Scan (0 Comments)
2022-01-03Johannes UllrichISC Stormcast For Monday, January 3rd, 2022 (oneliner) (0 Comments)
2022-01-02Guy BruneauExchange Server - Email Trapped in Transport Queues (0 Comments)
2022-01-01Didier StevensExpect Regressions (0 Comments)