Internet Storm Center
Sign In
Sign Up
Watch ISC TV. Great for NOCs, SOCs and Living Rooms:
https://isctv.sans.edu
Handler on Duty:
Xavier Mertens
Threat Level:
green
Date
Author
Title
2023-03-16
Xavier Mertens
Simple Shellcode Dissection
2023-02-26
Didier Stevens
oledump & MSI Files
2022-07-24
Didier Stevens
Video: Maldoc: non-ASCII VBA Identifiers
2022-07-21
Didier Stevens
Maldoc: non-ASCII VBA Identifiers
2022-05-14
Didier Stevens
Quick Analysis Of Phishing MSG
2022-03-13
Didier Stevens
YARA 4.2.0 Released
2022-03-05
Didier Stevens
oledump's Extra Option
2022-02-20
Didier Stevens
Video: YARA's Console Module
2022-01-30
Didier Stevens
YARA's Console Module
2021-12-16
Brad Duncan
How the "Contact Forms" campaign tricks people
2021-10-21
Brad Duncan
"Stolen Images Evidence" campaign pushes Sliver-based malware
2021-07-03
Didier Stevens
Finding Strings With oledump.py
2021-06-30
Johannes Ullrich
CVE-2021-1675: Incomplete Patch and Leaked RCE Exploit
2021-06-28
Didier Stevens
CFBF Files Strings Analysis
2021-06-24
Xavier Mertens
Do you Like Cookies? Some are for sale!
2021-06-20
Didier Stevens
Video: oledump Cheat Sheet
2020-12-06
Didier Stevens
oledump's Indicators (video)
2020-11-15
Didier Stevens
oledump's ! Indicator
2020-11-08
Didier Stevens
Quick Tip: Extracting all VBA Code from a Maldoc
2020-10-12
Didier Stevens
Nested .MSGs: Turtles All The Way Down
2020-10-11
Didier Stevens
Analyzing MSG Files With plugin_msg_summary
2020-09-18
Xavier Mertens
A Mix of Python & VBA in a Malicious Word Document
2019-12-29
Guy Bruneau
ELK Dashboard for Pihole Logs
2019-12-23
Didier Stevens
New oledump.py plugin: plugin_version_vba
2019-12-07
Guy Bruneau
Integrating Pi-hole Logs in ELK with Logstash
2019-11-25
Xavier Mertens
My Little DoH Setup
2019-05-10
Xavier Mertens
DSSuite - A Docker Container with Didier's Tools
2019-02-26
Russ McRee
Ad Blocking With Pi Hole
2018-08-19
Didier Stevens
Video: Peeking into msg files - revisited
2018-08-11
Didier Stevens
Peeking into msg files - revisited
2016-06-12
Guy Bruneau
DNS Sinkhole ISO Version 2.0
2016-03-07
Xavier Mertens
Another Malicious Document, Another Way to Deliver Malicious Code
2015-07-12
Didier Stevens
Jump List Files Are OLE Files
2015-07-04
Didier Stevens
A .BUP File Is An OLE File
2015-05-15
Didier Stevens
Another Maldoc? I'm Afraid So...
2015-05-09
Didier Stevens
Malicious Word Document: This Time The Maldoc Is A MIME File
2015-02-20
Tom Webb
Fast analysis of a Tax Scam
2015-02-19
Daniel Wesemann
Macros? Really?!
2013-11-18
Johannes Ullrich
Am I Sending Traffic to a "Sinkhole"?
2013-05-04
Kevin Shortt
The Zero-Day Pendulum Swings
2012-11-16
Guy Bruneau
VMware security updates for vSphere API and ESX Service Console - http://www.vmware.com/security/advisories/VMSA-2012-0016.html
2012-01-21
Guy Bruneau
DNS Sinkhole Scripts Fixes/Update
2011-10-15
Guy Bruneau
DNS Sinkhole Parser Script Update
2011-09-09
Guy Bruneau
IPv6 and DNS Sinkhole
2010-10-28
Tony Carothers
Cyber Security Awareness Month - Day 28 - Role of the employee
2010-06-19
Guy Bruneau
DNS Sinkhole ISO Available for Download
2010-01-10
Guy Bruneau
Easy DNS BIND Sinkhole Setup
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Forums
Auditing
Diary Discussions
Forensics
General Discussions
Industry News
Network Security
Penetration Testing
Software Security
Contact Us
Contact Us
About Us
Handlers
Slack Channel
Mastodon
Twitter
Subscribe to the Internet Storm Center
YouTube Channel