Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Diary Blog Archive - SANS Internet Storm Center InfoSec Diary Blog Archive

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Search Diaries:

Archive Matrix

2003JanFebMarApr MayJunJulAugSepOctNovDec

Archive Diary List


2015-03-31Johannes UllrichISC StormCast for Tuesday, March 31st 2015 (oneliner) (0 Comments)
2015-03-31Rob VandenBrinkSelect Star from PCAP - Treating Packet Captures as Databases (4 Comments)
2015-03-30Didier StevensYARA Rules For Shellcode (0 Comments)
2015-03-29Johannes UllrichISC StormCast for Monday, March 30th 2015 (oneliner) (0 Comments)
2015-03-29Didier StevensMalicious XML: Matryoshka Edition (0 Comments)
2015-03-27Russ McReeFriday Digest - 27 MAR 2015 (5 Comments)
2015-03-27Johannes UllrichISC StormCast for Friday, March 27th 2015 (oneliner) (0 Comments)
2015-03-26Johannes UllrichISC StormCast for Thursday, March 26th 2015 (oneliner) (0 Comments)
2015-03-26Daniel WesemannPin-up on your Smartphone! (8 Comments)
2015-03-25Kevin ListonNmap/Google Summer of Code (0 Comments)
2015-03-25Kevin ListonF-Secure: FSC-2015-2: PATH TRAVERSAL VULNERABILITY (0 Comments)
2015-03-25Kevin ListonPHP 5.5.23 is available (2 Comments)
2015-03-25Johannes UllrichISC StormCast for Wednesday, March 25th 2015 (oneliner) (0 Comments)
2015-03-24Kevin ListonRepurposing Logs (3 Comments)
2015-03-24Johannes UllrichISC StormCast for Tuesday, March 24th 2015 (oneliner) (0 Comments)
2015-03-23Rick WannerInteresting Home Depot Spam (4 Comments)
2015-03-23Rick WannerWatch for updated router firmware! (0 Comments)
2015-03-23Johannes UllrichISC StormCast for Monday, March 23rd 2015 (oneliner) (0 Comments)
2015-03-21Russell EubanksHave you seen my personal information? It has been lost. Again. (12 Comments)
2015-03-20Johannes UllrichISC StormCast for Friday, March 20th 2015 (oneliner) (0 Comments)
2015-03-20Lenny ZeltserWho Develops Code for IT Support Scareware Websites? (2 Comments)
2015-03-20Lenny ZeltserHow Victims Are Redirected to IT Support Scareware Sites (2 Comments)
2015-03-19Johannes UllrichOpenSSL Patch Released (8 Comments)
2015-03-19Johannes UllrichISC StormCast for Thursday, March 19th 2015 (oneliner) (0 Comments)
2015-03-18Johannes UllrichISC StormCast for Wednesday, March 18th 2015 (oneliner) (0 Comments)
2015-03-18Daniel WesemannPass the hash! (2 Comments)
2015-03-18Daniel WesemannNew SANS memory forensics poster (0 Comments)
2015-03-17Didier StevensImproperly issued SSL certificate for domain "" could be used in attempts to spoof content. (oneliner) (0 Comments)
2015-03-17Didier StevensFrom PEiD To YARA (4 Comments)
2015-03-17Johannes UllrichISC StormCast for Tuesday, March 17th 2015 (oneliner) (0 Comments)
2015-03-16Johannes UllrichAutomatically Documenting Network Connections From New Devices Connected to Home Networks (4 Comments)
2015-03-16Johannes UllrichISC StormCast for Monday, March 16th 2015 (oneliner) (0 Comments)
2015-03-14Didier StevensMaldoc VBA Sandbox/Virtualization Detection (8 Comments)
2015-03-13Basil Alawi S.TaherMalware targets home networks (3 Comments)
2015-03-13Basil Alawi S.TaherMicrosoft EMET 5.2 is available (3 Comments)
2015-03-13Johannes UllrichISC StormCast for Friday, March 13th 2015 (oneliner) (0 Comments)
2015-03-13Guy BruneauBlind SQL Injection against WordPress SEO by Yoast (0 Comments)
2015-03-12Johannes UllrichWho got the bad SSL Certificate? Using tshark to analyze the SSL handshake. (2 Comments)
2015-03-12Johannes UllrichISC StormCast for Thursday, March 12th 2015 (oneliner) (0 Comments)
2015-03-11Rob VandenBrinkApple iTunes Store is seeing an extended outage (11 Mar) - watch for status changes. (12 Mar) - service restored, all green! (oneliner) (0 Comments)
2015-03-11Rob VandenBrinkSyslog Skeet Shooting - Targetting Real Problems in Event Logs (4 Comments)
2015-03-11Johannes UllrichISC StormCast for Wednesday, March 11th 2015 (oneliner) (0 Comments)
2015-03-10Johannes UllrichMicrosoft March Patch Tuesday (13 Comments)
2015-03-10Johannes UllrichApple Patches for iOS, OS X and Apple TV (0 Comments)
2015-03-10Johannes UllrichISC StormCast for Tuesday, March 10th 2015 (oneliner) (0 Comments)
2015-03-10Brad DuncanThreatglass has pcap files with exploit kit activity (4 Comments)
2015-03-09Lenny ZeltserThe Mystery of a Session Cookie (3 Comments)
2015-03-09Johannes UllrichISC StormCast for Monday, March 9th 2015 (oneliner) (0 Comments)
2015-03-09Lenny ZeltserHow Malware Generates Mutex Names to Evade Detection (1 Comments)
2015-03-08Brad DuncanWhat Happened to You, Asprox Botnet? (0 Comments)
2015-03-07Guy BruneauShould it be Mandatory to have an Independent Security Audit after a Breach? (8 Comments)
2015-03-06Basil Alawi S.TaherCryptowall ,again! (2 Comments)
2015-03-06Johannes UllrichISC StormCast for Friday, March 6th 2015 (oneliner) (0 Comments)
2015-03-05Didier StevensXML: A New Vector For An Old Trick (3 Comments)
2015-03-05Rick WannerCuckoo Sandbox 1.2 released (oneliner) (0 Comments)
2015-03-05Johannes UllrichAnybody Doing Anything About ANY Queries? (7 Comments)
2015-03-05Johannes UllrichISC StormCast for Thursday, March 5th 2015 (oneliner) (0 Comments)
2015-03-04Rob VandenBrinkPutty 0.64 released last week (sorry, we missed it) - private-key-not-wiped-2 and diffie-hellman-range-check security issues resolved. See and (oneliner) (0 Comments)
2015-03-04Rob VandenBrinkWireshark 1.10.13 (old stable) and 1.12.4 (stable) released - see and (oneliner) (0 Comments)
2015-03-04Alex StanfordMarch OUCH! Newsletter: Gaming Online Safely & Securely (oneliner) (0 Comments)
2015-03-04Rob VandenBrinkNo Wireshark? No TCPDump? No Problem! (9 Comments)
2015-03-04Mark HofmanFreak Attack - Surprised? No. Worried? A little. (5 Comments)
2015-03-04Johannes UllrichISC StormCast for Wednesday, March 4th 2015 (oneliner) (0 Comments)
2015-03-03Brad DuncanAn Example of Evolving Obfuscation (3 Comments)
2015-03-03Johannes UllrichISC StormCast for Tuesday, March 3rd 2015 (oneliner) (0 Comments)
2015-03-02Johannes UllrichHow Do You Control the Internet of Things Inside Your Network? (1 Comments)
2015-03-02Johannes UllrichISC StormCast for Monday, March 2nd 2015 (oneliner) (0 Comments)
2015-03-01Rick WannerAdvisory: Seagate NAS Remote Code Execution (2 Comments)