Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Diary Discussions SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Diary Discussions
Title Replies Views Latest Reply
Did You Spot "Invoke-Expression"?
Nov 5th 2020
3 weeks ago by Xme
3 0 Nov 7th 2020
3 weeks ago
by Anonymous
Rediscovering Limitations of Stateful Firewalls: "NAT Slipstreaming" ? Implications, Detections and Mitigations
Nov 6th 2020
3 weeks ago by Johannes
0 0 No replies yet.
Attackers Exploiting WebLogic Servers via CVE-2020-14882 to install Cobalt Strike
Nov 4th 2020
3 weeks ago by Renato
0 0 No replies yet.
Emotet -> Qakbot -> more Emotet
Nov 3rd 2020
3 weeks ago by Brad
0 0 No replies yet.
More File Selection Gaffes
Oct 31st 2020
4 weeks ago by DidierStevens
1 0 Nov 2nd 2020
3 weeks ago
by DidierStevens
AV Cleaned Maldoc
Nov 2nd 2020
3 weeks ago by DidierStevens
0 0 No replies yet.
Wireshark 3.2.8 and 3.4.0 Released
Nov 1st 2020
4 weeks ago by DidierStevens
0 0 No replies yet.
PATCH NOW: CVE-2020-14882 Weblogic Actively Exploited Against Honeypots
Oct 29th 2020
1 month ago by Johannes
4 0 Oct 30th 2020
4 weeks ago
by Anonymous
Quick Status of the CAA DNS Record Adoption
Oct 30th 2020
4 weeks ago by Xme
0 0 No replies yet.
Excel 4 Macros: "Abnormal Sheet Visibility"
Oct 26th 2020
1 month ago by DidierStevens
3 0 Oct 28th 2020
1 month ago
by DidierStevens
Video: Pascal Strings
Oct 25th 2020
1 month ago by DidierStevens
0 0 No replies yet.
An Alternative to Shodan, Censys with User-Agent CensysInspect/1.1
Oct 24th 2020
1 month ago by Guy
0 0 No replies yet.
Sooty: SOC Analyst's All-in-One Tool
Oct 23rd 2020
1 month ago by Russ McRee
0 0 No replies yet.
BazarLoader phishing lures: plan a Halloween party, get a bonus and be fired in the same afternoon
Oct 22nd 2020
1 month ago by Jan
2 0 Oct 22nd 2020
1 month ago
by Jan
Shipping dangerous goods
Oct 21st 2020
1 month ago by Daniel
0 0 No replies yet.
CVE-2020-16898: Windows ICMPv6 Router Advertisement RRDNS Option Remote Code Execution Vulnerability
Oct 15th 2020
1 month ago by Johannes
3 0 Oct 20th 2020
1 month ago
by TravisMadson
Mirai-alike Python Scanner
Oct 20th 2020
1 month ago by Xme
0 0 No replies yet.
File Selection Gaffe
Oct 18th 2020
1 month ago by DidierStevens
1 0 Oct 19th 2020
1 month ago
by Netmanzim
CVE-2020-5135 - Buffer Overflow in SonicWall VPNs - Patch Now
Oct 17th 2020
1 month ago by Rick
1 0 Oct 18th 2020
1 month ago
by MarcRuef
More TA551 (Shathak) Word docs push IcedID (Bokbot)
Oct 14th 2020
1 month ago by Brad
2 0 Oct 15th 2020
1 month ago
by Xme