2021-12-01
| 2021-12-31 | Jan Kopriva | Do you want your Agent Tesla in the 300 MB or 8 kB package? (0 Comments) |
| 2021-12-30 | Johannes Ullrich | ISC Stormcast For Thursday, December 30th, 2021 (oneliner) (0 Comments) |
| 2021-12-30 | Brad Duncan | Agent Tesla Updates SMTP Data Exfiltration Technique (0 Comments) |
| 2021-12-29 | Russ McRee | Log4j 2 Security Vulnerabilities Update Guide (0 Comments) |
| 2021-12-29 | Johannes Ullrich | ISC Stormcast For Wednesday, December 29th, 2021 (oneliner) (0 Comments) |
| 2021-12-28 | Russ McRee | LotL Classifier tests for shells, exfil, and miners (0 Comments) |
| 2021-12-28 | Johannes Ullrich | ISC Stormcast For Tuesday, December 28th, 2021 (oneliner) (0 Comments) |
| 2021-12-27 | Renato Marinho | Attackers are abusing MSBuild to evade defenses and implant Cobalt Strike beacons (0 Comments) |
| 2021-12-27 | Johannes Ullrich | ISC Stormcast For Monday, December 27th, 2021 (oneliner) (0 Comments) |
| 2021-12-26 | Didier Stevens | Quicktip: TShark's Options -e and -T (0 Comments) |
| 2021-12-25 | Didier Stevens | TShark Tip: Extracting Field Values From Capture Files (0 Comments) |
| 2021-12-24 | Renato Marinho | Example of how attackers are trying to push crypto miners via Log4Shell (0 Comments) |
| 2021-12-23 | Johannes Ullrich | Defending Cloud IMDS Against log4shell (and more) (0 Comments) |
| 2021-12-23 | Johannes Ullrich | log4shell and cloud provider internal meta data services (IMDS) (0 Comments) |
| 2021-12-23 | Xavier Mertens | Nicely Crafted indeed.com Login Page (0 Comments) |
| 2021-12-23 | Johannes Ullrich | ISC Stormcast For Thursday, December 23rd, 2021 (oneliner) (0 Comments) |
| 2021-12-22 | Johannes Ullrich | ISC Stormcast For Wednesday, December 22nd, 2021 (oneliner) (0 Comments) |
| 2021-12-22 | Brad Duncan | December 2021 Forensic Contest: Answers and Analysis (0 Comments) |
| 2021-12-21 | Xavier Mertens | More Undetected PowerShell Dropper (2 Comments) |
| 2021-12-21 | Johannes Ullrich | ISC Stormcast For Tuesday, December 21st, 2021 (oneliner) (0 Comments) |
| 2021-12-20 | Jan Kopriva | PowerPoint attachments, Agent Tesla and code reuse in malware (0 Comments) |
| 2021-12-20 | Johannes Ullrich | ISC Stormcast For Monday, December 20th, 2021 (oneliner) (0 Comments) |
| 2021-12-19 | Didier Stevens | Office 2021: VBA Project Version (0 Comments) |
| 2021-12-18 | Guy Bruneau | VMware Security Update - (oneliner) (0 Comments) |
| 2021-12-17 | Rob VandenBrink | DR Automation - Using Public DNS APIs (0 Comments) |
| 2021-12-17 | Johannes Ullrich | ISC Stormcast For Friday, December 17th, 2021 (oneliner) (0 Comments) |
| 2021-12-16 | Brad Duncan | How the "Contact Forms" campaign tricks people (0 Comments) |
| 2021-12-16 | Johannes Ullrich | ISC Stormcast For Thursday, December 16th, 2021 (oneliner) (0 Comments) |
| 2021-12-15 | Xavier Mertens | Simple but Undetected PowerShell Backdoor (0 Comments) |
| 2021-12-15 | Johannes Ullrich | ISC Stormcast For Wednesday, December 15th, 2021 (oneliner) (0 Comments) |
| 2021-12-14 | Renato Marinho | Log4j 2.15.0 and previously suggested mitigations may not be enough (4 Comments) |
| 2021-12-14 | Renato Marinho | Microsoft December 2021 Patch Tuesday (0 Comments) |
| 2021-12-14 | Johannes Ullrich | Log4j: Getting ready for the long haul (CVE-2021-44228) (1 Comments) |
| 2021-12-14 | Johannes Ullrich | ISC Stormcast For Tuesday, December 14th, 2021 (oneliner) (0 Comments) |
| 2021-12-13 | Johannes Ullrich | ISC Stormcast For Monday, December 13th, 2021 (oneliner) (0 Comments) |
| 2021-12-13 | Renato Marinho | Log4Shell exploited to implant coin miners (1 Comments) |
| 2021-12-11 | Johannes Ullrich | Log4j / Log4Shell Followup: What we see and how to defend (and how to access our data) (4 Comments) |
| 2021-12-10 | Bojan Zdrnja | RCE in log4j, Log4Shell, or how things can get bad quickly (4 Comments) |
| 2021-12-10 | Xavier Mertens | Python Shellcode Injection From JSON Data (0 Comments) |
| 2021-12-10 | Johannes Ullrich | ISC Stormcast For Friday, December 10th, 2021 (oneliner) (0 Comments) |
| 2021-12-09 | Yee Ching Tok | Phishing Direct Messages via Discord (0 Comments) |
| 2021-12-09 | Johannes Ullrich | ISC Stormcast For Thursday, December 9th, 2021 (oneliner) (0 Comments) |
| 2021-12-08 | Johannes Ullrich | ISC Stormcast For Wednesday, December 8th, 2021 (oneliner) (0 Comments) |
| 2021-12-08 | Brad Duncan | December 2021 Forensic Challenge (0 Comments) |
| 2021-12-07 | Johannes Ullrich | Webshells, Webshells everywhere! (0 Comments) |
| 2021-12-07 | Johannes Ullrich | ISC Stormcast For Tuesday, December 7th, 2021 (oneliner) (0 Comments) |
| 2021-12-06 | Xavier Mertens | The Importance of Out-of-Band Networks (0 Comments) |
| 2021-12-06 | Johannes Ullrich | ISC Stormcast For Monday, December 6th, 2021 (oneliner) (0 Comments) |
| 2021-12-04 | Guy Bruneau | A Review of Year 2021 (0 Comments) |
| 2021-12-03 | Xavier Mertens | The UPX Packer Will Never Die! (0 Comments) |
| 2021-12-03 | Johannes Ullrich | ISC Stormcast For Friday, December 3rd, 2021 (oneliner) (0 Comments) |
| 2021-12-02 | Brad Duncan | TA551 (Shathak) pushes IcedID (Bokbot) (0 Comments) |
| 2021-12-02 | Johannes Ullrich | ISC Stormcast For Thursday, December 2nd, 2021 (oneliner) (0 Comments) |
| 2021-12-01 | Xavier Mertens | Info-Stealer Using webhook.site to Exfiltrate Data (0 Comments) |
| 2021-12-01 | Johannes Ullrich | ISC Stormcast For Wednesday, December 1st, 2021 (oneliner) (0 Comments) |
https://www.sans.edu
