Diaries by Keyword - SANS Internet Storm Center

Participate: Learn more about our honeypot network
https://isc.sans.edu/tools/honeypot/

Handler on Duty: Jesse La Grew

Threat Level: green

Date	Author	Title
TRAFFIC PATTERNS
2018-11-18	Guy Bruneau	Multipurpose PCAP Analysis Tool
TRAFFIC
2024-02-03/a>	Guy Bruneau	DShield Sensor Log Collection with Elasticsearch
2023-01-02/a>	Xavier Mertens	NetworkMiner 2.8 Released
2022-01-25/a>	Brad Duncan	Emotet Stops Using 0.0.0.0 in Spambot Traffic
2021-11-07/a>	Didier Stevens	Video: Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory
2021-11-06/a>	Didier Stevens	Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory
2021-10-25/a>	Didier Stevens	Decrypting Cobalt Strike Traffic With a "Leaked" Private Key
2021-04-10/a>	Guy Bruneau	Building an IDS Sensor with Suricata & Zeek with Logs to ELK
2020-12-03/a>	Brad Duncan	Traffic Analysis Quiz: Mr Natural
2020-11-11/a>	Brad Duncan	Traffic Analysis Quiz: DESKTOP-FX23IK5
2018-11-18/a>	Guy Bruneau	Multipurpose PCAP Analysis Tool
2016-05-14/a>	Guy Bruneau	INetSim as a Basic Honeypot
2015-03-16/a>	Johannes Ullrich	Automatically Documenting Network Connections From New Devices Connected to Home Networks
2013-12-02/a>	Richard Porter	Reports of higher than normal SSH Attacks
2013-03-09/a>	Guy Bruneau	IPv6 Focus Month: IPv6 Encapsulation - Protocol 41
2013-02-03/a>	Lorna Hutcheson	Is it Really an Attack?
2012-08-30/a>	Bojan Zdrnja	Analyzing outgoing network traffic (part 2)
2012-08-23/a>	Bojan Zdrnja	Analyzing outgoing network traffic
2011-01-15/a>	Jim Clausing	What's up with port 8881?
2009-01-21/a>	Raul Siles	Traffic increase for port UDP/8247
PATTERNS
2018-11-18/a>	Guy Bruneau	Multipurpose PCAP Analysis Tool