Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Diaries by Keyword Diaries by Keyword

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title

BLACK

2016-01-11/a>Didier StevensBlackEnergy .XLS Dropper
2012-02-24/a>Guy BruneauBlackBerry PlayBook tablet Samba file sharing Vulnerability - http://www.blackberry.com/btsc/KB29565
2011-08-11/a>Guy BruneauBlackBerry Enterprise Server Critical Update
2011-07-14/a>Guy BruneauBlackberry Server Security Update - http://btsc.webapps.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB27258
2011-03-08/a>Jim ClausingMarch 2011 Microsoft Black Tuesday Summary
2011-01-13/a>Rob VandenBrinkBlackberry BES Server Updates for PDF Vulnerabilities
2010-12-15/a>Manuel Humberto Santander PelaezVulnerability in the PDF distiller of the BlackBerry Attachment Service
2010-09-14/a>Adrien de BeaupreBlackEnergy DDoS
2010-08-14/a>Tony CarothersFreedom of Information
2010-02-05/a>Jim ClausingMemory Analysis - time to move beyond XP
2009-12-23/a>Marcus SachsBlackberry Outage
2009-12-02/a>Rob VandenBrinkMicrosoft Black Screen of Death - Fact of Fiction?
2009-12-01/a>Chris CarboniVulnerabilities in the PDF distiller of the BlackBerry Attachment Service
2009-11-05/a>Swa FrantzenRIM fixes random code execution vulnerability
2009-05-29/a>Lorna HutchesonBlackberry Server Vulnerability
2009-05-27/a>donald smithHost file black lists
2008-07-15/a>Maarten Van HorenbeeckBlackBerry PDF parsing vulnerability
2008-05-20/a>Raul SilesList of malicious domains inserted through SQL injection

LIST

2020-08-18/a>Rick WannerISC Blocked
2020-07-23/a>Xavier MertensSimple Blocklisting with MISP & pfSense
2019-09-19/a>Xavier MertensBlocklisting or Whitelisting in the Right Way
2019-06-27/a>Rob VandenBrinkFinding the Gold in a Pile of Pennies - Long Tail Analysis in PowerShell
2018-12-26/a>Didier StevensBitcoin "Blocklists"
2018-11-12/a>Rick WannerUsing the Neutrino ip-blocklist API to test general badness of an IP
2018-05-23/a>Remco VerhoefTrack naughty and nice binaries with Google Santa
2017-04-05/a>Xavier MertensWhitelists: The Holy Grail of Attackers
2015-09-08/a>Lenny ZeltserA Close Look at PayPal Overpayment Scams That Target Craigslist Sellers
2015-07-12/a>Didier StevensJump List Files Are OLE Files
2015-02-23/a>Richard PorterSubscribing to the DShield Top 20 on a Palo Alto Networks Firewall
2014-09-19/a>Guy BruneauWeb Scan looking for /info/whitelist.pac
2014-08-17/a>Rick WannerPart 1: Is your home network unwittingly contributing to NTP DDOS attacks?
2013-12-23/a>Rob VandenBrinkHow-To's for the Holidays - Java Whitelisting using AD Group Policy
2013-10-16/a>Adrien de BeaupreAccess denied and blockliss
2013-09-03/a>Rob VandenBrinkIs "Reputation Backscatter" a Thing?
2013-04-30/a>Russ McReeApache binary backdoor adds malicious redirect to Blackhole
2013-04-23/a>Russ McReeMicrosoft's Security Intelligence Report (SIRv14) released
2012-09-01/a>Russ McReeBlackhole targeting Java vulnerability via fake Microsoft Services Agreement email phish
2012-06-26/a>Daniel WesemannRun, Forest! (Update)
2012-04-30/a>Rob VandenBrinkPatch for Oracle TNS Listener issue released !
2012-04-25/a>Daniel WesemannBlacole's obfuscated JavaScript
2012-04-25/a>Daniel WesemannBlacole's shell code
2011-12-06/a>Pedro BuenoThe RedRet connection...
2011-11-22/a>Pedro BuenoUpdates on ZeroAccess and BlackHole front...
2010-08-13/a>Guy BruneauShadowserver Binary Whitelisting Service
2010-02-15/a>Johannes UllrichNew ISC Tool: Whitelist Hash Database
2009-10-16/a>Adrien de BeaupreCyber Security Awareness Month - Day 16 - Port 1521 - Oracle TNS Listener
2009-09-07/a>Jim ClausingSeclists.org is finally back
2009-06-11/a>Rick WannerMIR-ROR Motile Incident Response - Respond Objectively Remediate
2009-05-27/a>donald smithHost file black lists
2009-02-03/a>Swa FrantzenOn the importance of patching fast
2008-05-28/a>Johannes UllrichReminder: Proper use of DShield data
2008-05-20/a>Raul SilesList of malicious domains inserted through SQL injection
2006-12-18/a>Toby KohlenbergORDB Shutting down