Handler on Duty: Jesse La Grew
Threat Level: green
Mark Baggett Diaries
- domain_stats.py a web api for SEIM phishing hunts
- System Resource Utilization Monitor
- Some tools updates
- Powershell Malware - No Hard drive, Just hard times
- Offensive Countermeasures against stolen passswords
- Continuous Monitoring for Random Strings
- VMware Security Bulletins
- freq.py super powers?
- OPENSSL update fixes Certificate Verification issue
- Cisco PSIRT reporting Customers affected by ASA VPN DoS attacks
- Detecting Random - Finding Algorithmically chosen DNS names (DGA)
- Microsoft Patches appear to be causing problems
- Detecting Mimikatz Use On Your Network
- Microsoft Update Advisory for February 2015
- Automating Incident data collection with Python
- Port 5000 traffic and snort signature
- Gems in the ISC Diary Comments
- Ongoing Data breach in Chicago Area Taxis
- A buffer overflow in a "Type safe" Language?
- Microsoft Azure offline
- Are large scale Man in The Middle attacks underway?
- "In the end it is all PEEKS and POKES."
- Searching live memory on a running machine with winpmem
- Winpmem - Mild mannered memory aquisition tool??
- Wipe the drive! Stealthy Malware Persistence - Part 4
- Wipe the drive! Stealthy Malware Persistence - Part 3
- AVG detect legit file as virus
- Wipe the drive! Stealthy Malware Persistence - Part 2
- Wipe the drive! Stealthy Malware Persistence Mechanism - Part 1
- Reminder: Java 6 end-of-live February 2013
- Watch for Newtown Connecticut scam sites
- Security Patch released for BIND 9.9.2
- Fresh batch of Microsoft patches next week
- Remote Diagnostics with PSR
- Cisco TACACS+ Authentication Bypass
- Multiple 0-Days Reported!
- Help eliminate unquoted path vulnerabilities
- More SSL trouble
- Microsoft disrupts traffic associated with the Nitol botnet
- TCP Fuzzing with Scapy
- Syria Internet connection cut?
- A Heap of Overflows?
- Diagnosing Malware with Resource Monitor
- Problems with MS12-035 affecting XP, SBS and Windows 2003?
- IP Fragmentation Attacks
- McAfee DAT troubles
- Challenge: What can you do with Funky Directory Names (Part 2)
- Challenge: What can you do with funky directory names?
- It is time to update your Web Browser
- Software Update Potpourri
- Critical Control 18: Incident Response Capabilities
- What are the 20 Critical Controls?
