Diaries by Keyword - SANS Internet Storm Center

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Handler on Duty: Tom Webb

Threat Level: green

Date	Author	Title
2022-09-04	Didier Stevens	Video: VBA Maldoc & UTF7 (APT-C-35)
2022-08-29	Didier Stevens	Update: VBA Maldoc & UTF7 (APT-C-35)
2022-08-16	Didier Stevens	VBA Maldoc & UTF7 (APT-C-35)
2022-02-13	Guy Bruneau	DHL Spear Phishing to Capture Username/Password
2020-05-31	Guy Bruneau	Windows 10 Built-in Packet Sniffer - PktMon
2020-03-31	Johannes Ullrich	Kwampirs Targeted Attacks Involving Healthcare Sector
2017-09-17	Guy Bruneau	rockNSM as a Incident Response Package
2017-04-13	Rob VandenBrink	Packet Captures Filtered by Process
2016-11-05	Xavier Mertens	Full Packet Capture for Dummies
2016-07-07	Johannes Ullrich	Patchwork: Is it still "Advanced" if all you have to do is Copy/Paste?
2013-02-19	Johannes Ullrich	APT1, Unit 61398 and are state sponsored attacks real
2013-02-04	Adam Swanger	SAN Securing The Human Monthly Awareness Video - Advanced Persistent Threat (APT) http://www.securingthehuman.org/resources/ncsam
2013-01-22	Richard Porter	Using Metasploit for Patch Sanity Checks
2012-06-25	Rick Wanner	Targeted Malware for Industrial Espionage?
2012-05-14	Chris Mohan	Laptops at Security Conferences
2011-10-19	Pedro Bueno	The old new Stuxnet...DuQu?
2011-03-25	Kevin Liston	APT Tabletop Exercise
2010-05-22	Rick Wanner	SANS 2010 Digital Forensics Summit - APT Based Forensic Challenge
2009-11-18	Rob VandenBrink	Using a Cisco Router as a “Remote Collector” for tcpdump or Wireshark
2008-10-15	Rick Wanner	Day 15 - Containing the Damage From a Lost or Stolen Laptop
2008-09-09	Swa Frantzen	Evil side economy: $1 for breaking 1000 CAPTCHAs
2008-04-16	William Stearns	Passer, a aassive machine and service sniffer