Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: InfoSec Diary Blog Archive InfoSec Diary Blog Archive


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Search Diaries:


Archive Matrix

2003JanFebMarApr MayJunJulAugSepOctNovDec
2004JanFebMarAprMayJunJulAugSepOctNovDec
2005JanFebMarAprMayJunJulAugSepOctNovDec
2006JanFebMarAprMayJunJulAugSepOctNovDec
2007JanFebMarAprMayJunJulAugSepOctNovDec
2008JanFebMarAprMayJunJulAugSepOctNovDec
2009JanFebMarAprMayJunJulAugSepOctNovDec
2010JanFebMarAprMayJunJulAugSepOctNovDec
2011JanFebMarAprMayJunJulAugSepOctNovDec
2012JanFebMarAprMayJunJulAugSepOctNovDec
2013JanFebMarAprMayJunJulAugSepOctNovDec
2014JanFebMarAprMayJunJulAugSepOctNovDec
2015JanFebMarAprMayJunJulAugSepOctNovDec
2016JanFebMarAprMayJunJulAugSepOctNovDec
2017JanFebMarAprMayJunJulAugSepOctNovDec
2018JanFebMarAprMayJunJulAugSepOctNovDec
2019JanFebMarAprMayJunJulAugSepOctNovDec
2020JanFebMarAprMayJunJulAugSepOctNovDec
2021JanFebMarAprMayJunJulAugSepOctNovDec

Archive Diary List

2021-1-01

DateAuthorTitle
2021-01-31Didier StevensYARA v4.0.4 (0 Comments)
2021-01-31Didier StevensWireshark 3.4.3 Released (0 Comments)
2021-01-30Guy BruneauWireshark 3.2.11 is now available which contains Bug Fixes - (oneliner) (0 Comments)
2021-01-30Guy BruneauPacketSifter as Network Parsing and Telemetry Tool (0 Comments)
2021-01-29Xavier MertensSensitive Data Shared with Cloud Services (0 Comments)
2021-01-29Johannes UllrichISC Stormcast For Friday, January 29th, 2021 (oneliner) (0 Comments)
2021-01-28Johannes UllrichISC Stormcast For Thursday, January 28th, 2021 (oneliner) (0 Comments)
2021-01-28Daniel WesemannEmotet vs. Windows Attack Surface Reduction (0 Comments)
2021-01-27Jan KoprivaTriOp - tool for gathering (not just) security-related data from Shodan.io (tool drop) (0 Comments)
2021-01-27Johannes UllrichISC Stormcast For Wednesday, January 27th, 2021 (oneliner) (0 Comments)
2021-01-26Brad DuncanTA551 (Shathak) Word docs push Qakbot (Qbot) (2 Comments)
2021-01-26Johannes UllrichISC Stormcast For Tuesday, January 26th, 2021 (oneliner) (0 Comments)
2021-01-25Rob VandenBrinkFun with NMAP NSE Scripts and DOH (DNS over HTTPS) (0 Comments)
2021-01-25Johannes UllrichISC Stormcast For Monday, January 25th, 2021 (oneliner) (0 Comments)
2021-01-24Didier StevensVideo: Doc & RTF Malicious Document (0 Comments)
2021-01-23Didier StevensCyberChef: Analyzing OOXML Files for URLs (0 Comments)
2021-01-22Xavier MertensAnother File Extension to Block in your MTA: .jnlp (2 Comments)
2021-01-22Johannes UllrichISC Stormcast For Friday, January 22nd, 2021 (oneliner) (0 Comments)
2021-01-21Johannes UllrichISC Stormcast For Thursday, January 21st, 2021 (oneliner) (0 Comments)
2021-01-21Xavier MertensPowershell Dropping a REvil Ransomware (0 Comments)
2021-01-20Johannes UllrichISC Stormcast For Wednesday, January 20th, 2021 (oneliner) (0 Comments)
2021-01-20Brad DuncanQakbot activity resumes after holiday break (0 Comments)
2021-01-19Russ McReeSecurity Detection & Response Alert Output Usability Survey (oneliner) (0 Comments)
2021-01-19Russ McReeGordon for fast cyber reputation checks (1 Comments)
2021-01-19Johannes UllrichISC Stormcast For Tuesday, January 19th, 2021 (oneliner) (0 Comments)
2021-01-18Rob VandenBrinkThe CIS Benchmark for Cisco Nexus (NX-OS) 1.0 went live last week, find it here: (oneliner) (0 Comments)
2021-01-18Johannes UllrichISC Stormcast For Monday, January 18th, 2021 (oneliner) (0 Comments)
2021-01-18Didier StevensDoc & RTF Malicious Document (0 Comments)
2021-01-17Didier StevensNew Release of Sysmon Adding Detection for Process Tampering (0 Comments)
2021-01-15Guy BruneauObfuscated DNS Queries (0 Comments)
2021-01-15Brad DuncanThrowback Friday: An Example of Rig Exploit Kit (0 Comments)
2021-01-15Johannes UllrichISC Stormcast For Friday, January 15th, 2021 (oneliner) (0 Comments)
2021-01-14Bojan ZdrnjaDynamically analyzing a heavily obfuscated Excel 4 macro malicious file (2 Comments)
2021-01-14Johannes UllrichISC Stormcast For Thursday, January 14th, 2021 (oneliner) (0 Comments)
2021-01-13Johannes UllrichISC Stormcast For Wednesday, January 13th, 2021 (oneliner) (0 Comments)
2021-01-13Brad DuncanHancitor activity resumes after a hoilday break (0 Comments)
2021-01-12Renato MarinhoMicrosoft January 2021 Patch Tuesday (0 Comments)
2021-01-12Johannes UllrichISC Stormcast For Tuesday, January 12th, 2021 (oneliner) (0 Comments)
2021-01-11Rob VandenBrinkUsing the NVD Database and API to Keep Up with Vulnerabilities and Patches - Tool Drop: CVEScan (Part 3 of 3) (0 Comments)
2021-01-11Rob VandenBrinkNew version of Sysinternals released, Process Hollowing detection added in Sysmon, new registry access detection added to Procmon (oneliner) (0 Comments)
2021-01-11Johannes UllrichISC Stormcast For Monday, January 11th, 2021 (oneliner) (0 Comments)
2021-01-10Didier StevensMaldoc Analysis With CyberChef (0 Comments)
2021-01-09Didier StevensMaldoc Strings Analysis (2 Comments)
2021-01-08Rob VandenBrinkUsing the NIST Database and API to Keep Up with Vulnerabilities and Patches - Playing with Code (Part 2 of 3) (0 Comments)
2021-01-08Johannes UllrichISC Stormcast For Friday, January 8th, 2021 (oneliner) (0 Comments)
2021-01-07Rob VandenBrinkDirectly related to today's main story on CPE/CVEs - Code Exec in Cisco Jabber, all platforms (oneliner) (0 Comments)
2021-01-07Rob VandenBrinkUsing the NIST Database and API to Keep Up with Vulnerabilities and Patches (Part 1 of 3) (4 Comments)
2021-01-07Johannes UllrichISC Stormcast For Thursday, January 7th, 2021 (oneliner) (0 Comments)
2021-01-06Johannes UllrichScans for Zyxel Backdoors are Commencing. (0 Comments)
2021-01-06Johannes UllrichISC Stormcast For Wednesday, January 6th, 2021 (oneliner) (0 Comments)
2021-01-05Johannes UllrichNetfox Detective: An Alternative Open-Source Packet Analysis Tool (0 Comments)
2021-01-05Johannes UllrichISC Stormcast For Tuesday, January 5th, 2021 (oneliner) (0 Comments)
2021-01-04Jan KoprivaFrom a small BAT file to Mass Logger infostealer (0 Comments)
2021-01-04Johannes UllrichISC Stormcast For Monday, January 4th 2021 (oneliner) (0 Comments)
2021-01-02Guy BruneauProtecting Home Office and Enterprise in 2021 (0 Comments)
2021-01-01Didier StevensStrings 2021 (1 Comments)