Diaries by Keyword - SANS Internet Storm Center

Participate: Learn more about our honeypot network
https://isc.sans.edu/tools/honeypot/

Handler on Duty: Jesse La Grew

Threat Level: green

Date	Author	Title
AUTHENTICATION BYPASS
2014-03-13	Daniel Wesemann	Identification and authentication are hard ... finding out intention is even harder
2013-09-18	Rob VandenBrink	Cisco DCNM Update Released
AUTHENTICATION
2022-02-01/a>	Xavier Mertens	Automation is Nice But Don't Replace Your Knowledge
2021-11-08/a>	Xavier Mertens	(Ab)Using Security Tools & Controls for the Bad
2021-10-18/a>	Xavier Mertens	Malicious PowerShell Using Client Certificate Authentication
2021-06-24/a>	Xavier Mertens	Do you Like Cookies? Some are for sale!
2016-09-15/a>	Xavier Mertens	In Need of a OTP Manager Soon?
2014-03-13/a>	Daniel Wesemann	Identification and authentication are hard ... finding out intention is even harder
2013-12-20/a>	Daniel Wesemann	authorized key lime pie
2013-09-18/a>	Rob VandenBrink	Cisco DCNM Update Released
2013-03-23/a>	Guy Bruneau	Apple ID Two-step Verification Now Available in some Countries
2011-05-18/a>	Bojan Zdrnja	Android, HTTP and authentication tokens
2010-09-21/a>	Johannes Ullrich	Implementing two Factor Authentication on the Cheap
2010-03-10/a>	Rob VandenBrink	Microsoft re-release of KB973811 - attacks on Extended Protection for Authentication
BYPASS
2022-09-22/a>	Xavier Mertens	RAT Delivered Through FODHelper
2022-06-04/a>	Guy Bruneau	Spam Email Contains a Very Large ISO file
2022-05-20/a>	Xavier Mertens	A 'Zip Bomb' to Bypass Security Controls & Sandboxes
2020-12-29/a>	Jan Kopriva	Want to know what's in a folder you don't have a permission to access? Try asking your AV solution...
2020-11-25/a>	Xavier Mertens	Live Patching Windows API Calls Using PowerShell
2020-04-04/a>	Didier Stevens	New Bypass Technique or Corrupt Word Document?
2019-12-26/a>	Xavier Mertens	Bypassing UAC to Install a Cryptominer
2019-11-08/a>	Xavier Mertens	Microsoft Apps Diverted from Their Main Use
2019-07-25/a>	Rob VandenBrink	When Users Attack! Users (and Admins) Thwarting Security Controls
2017-03-05/a>	Didier Stevens	Another example of maldoc string obfuscation, with extra bonus: UAC bypass
2016-12-13/a>	Xavier Mertens	UAC Bypass in JScript Dropper
2016-11-16/a>	Xavier Mertens	Example of Getting Analysts & Researchers Away
2015-06-16/a>	John Bambenek	CVE-2014-4114 and an Interesting AV Bypass Technique
2014-03-13/a>	Daniel Wesemann	Identification and authentication are hard ... finding out intention is even harder
2013-09-18/a>	Rob VandenBrink	Cisco DCNM Update Released
2012-05-08/a>	Bojan Zdrnja	Windows Firewall Bypass Vulnerability and NetBIOS NS
2008-04-22/a>	donald smith	Symantec decomposer rar bypass allowed malicious content.

AUTHENTICATION BYPASS

AUTHENTICATION

BYPASS