Diaries by Keyword - SANS Internet Storm Center

Participate: Learn more about our honeypot network
https://isc.sans.edu/tools/honeypot/

Handler on Duty: Xavier Mertens

Threat Level: green

Date	Author	Title
2022-03-27	Didier Stevens	Video: Maldoc Cleaned by Anti-Virus
2020-12-29	Jan Kopriva	Want to know what's in a folder you don't have a permission to access? Try asking your AV solution...
2020-11-25	Xavier Mertens	Live Patching Windows API Calls Using PowerShell
2020-08-31	Didier Stevens	Finding The Original Maldoc
2020-08-29	Didier Stevens	Malicious Excel Sheet with a NULL VT Score: More Info
2020-01-23	Xavier Mertens	Complex Obfuscation VS Simple Trick
2018-06-25	Didier Stevens	Guilty by association
2015-12-05	Guy Bruneau	Are you looking to setup your own Malware Sandbox?
2015-06-28	Didier Stevens	The EICAR Test File
2014-05-27	Kevin Shortt	Avast forums hacked
2012-11-02	Daniel Wesemann	The shortcomings of anti-virus software
2012-04-26	Richard Porter	Define Irony: A medical device with a Virus?
2011-06-02	Johannes Ullrich	Some Insight into Apple's Anti-Virus Signatures
2011-03-17	Kevin Liston	So You Got an AV Alert. Now What?
2011-03-09	Kevin Shortt	AVG Anti-Virus 2011 False Positives - Luhe.Exploit.PDF.B
2011-03-01	Daniel Wesemann	AV software and "sharing samples"
2010-05-26	Bojan Zdrnja	Malware modularization and AV detection evasion
2009-09-25	Lenny Zeltser	Categories of Common Malware Traits
2009-09-17	Bojan Zdrnja	Why is Rogue/Fake AV so successful?
2009-08-29	Guy Bruneau	Immunet Protect - Cloud and Community Malware Protection
2009-08-19	Daniel Wesemann	Checking your protection
2009-08-13	Johannes Ullrich	CA eTrust update crashes systems
2008-09-15	donald smith	Fake antivirus 2009 and search engine results
2006-10-30	William Salusky	ToD - Configuration Management - maintaining security awareness