ISC Stormcast For Wednesday, January 10th, 2024 https://isc.sans.edu/podcastdetail/8804, (Wed, Jan 10th) 2024-1-10 10:0:2 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc papers feeds johannes

Microsoft January 2024 Patch Tuesday, (Wed, Jan 10th) Microsoft today surprised with a light patch Tuesday. We only received 48 patches for Microsoft pro... 2024-1-10 08:38:10 | 阅读: 33 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu windows microsoft remote elevation bypass

Jenkins Brute Force Scans, (Tue, Jan 9th) Our honeypots saw a number of scans for "/j_acegi_security_check" the last two days. This URL has n... 2024-1-10 01:17:36 | 阅读: 17 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu jenkins username honeypot 112233 honeypots

ISC Stormcast For Tuesday, January 9th, 2024 https://isc.sans.edu/podcastdetail/8802, (Tue, Jan 9th) 2024-1-9 10:0:2 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc papers feeds diaries honeypot

What is that User Agent?, (Mon, Jan 8th) Devices are connecting to different web resources on a regular basis. One method to identify what i... 2024-1-8 22:34:36 | 阅读: 18 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu windows mozilla agents chrome qualystest

ISC Stormcast For Monday, January 8th, 2024 https://isc.sans.edu/podcastdetail/8800, (Mon, Jan 8th) 2024-1-8 10:0:2 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc feeds papers duty developers

Suspicious Prometei Botnet Activity, (Sun, Jan 7th) On the 31 Dec 2023, after trying multiple username/password combination, actor using IP 194.30.53.6... 2024-1-8 04:23:34 | 阅读: 17 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 7z prometei honeypot isc

Are you sure of your password?, (Sat, Jan 6th) If many people can detect simple phishing emails these days, some attacks are very well crafted and... 2024-1-6 17:18:30 | 阅读: 15 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu attacker phishing passwords submits victim

Netstat, but Better and in PowerShell, (Fri, Jan 5th) I don't know about you, but in Windows I use netstat pretty frequently.  Netstat is a great tool to... 2024-1-5 10:38:12 | 阅读: 28 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 25660 vpnui powershell 26244

ISC Stormcast For Friday, January 5th, 2024 https://isc.sans.edu/podcastdetail/8798, (Fri, Jan 5th) 2024-1-5 10:0:2 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc papers feeds vandenbrink

Wireshark updates, (Thu, Jan 4th) The Wireshark Foundation has released 3 new versions of its popular network protocol analyzer. They... 2024-1-5 00:31:33 | 阅读: 2 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu relnotes cves clausing jclausing isc

ISC Stormcast For Thursday, January 4th, 2024 https://isc.sans.edu/podcastdetail/8796, (Thu, Jan 4th) 2024-1-4 10:0:2 | 阅读: 9 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers isc feeds duty honeypot

Interesting large and small malspam attachments from 2023, (Wed, Jan 3rd) At the end of a year, or at the beginning of a new one, I like to go over all malicious attachments... 2024-1-3 21:17:51 | 阅读: 3 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu vbe malicious chrw malspam smallest

ISC Stormcast For Wednesday, January 3rd, 2024 https://isc.sans.edu/podcastdetail/8794, (Wed, Jan 3rd) 2024-1-3 10:0:2 | 阅读: 9 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc papers feeds duty bluesky

Fingerprinting SSH Identification Strings, (Tue, Jan 2nd) For HTTP, logging and fingerprinting browser user agents is standard practice. Many anti-automation... 2024-1-3 02:29:10 | 阅读: 14 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu ssh openssh putty paramiko

ISC Stormcast For Tuesday, January 2nd, 2024 https://isc.sans.edu/podcastdetail/8792, (Tue, Jan 2nd) 2024-1-2 10:0:1 | 阅读: 8 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu feeds isc papers diary webb

Pi-Hole Pi4 Docker Deployment, (Sun, Dec 31st) During the holiday season, I've tried many different self-hosting solutions. But one of the most ba... 2024-1-1 04:58:25 | 阅读: 14 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu hole backup dhcp dockers tk

Unveiling the Mirai: Insights into Recent DShield Honeypot Activity [Guest Diary], (Wed, Dec 27th) [This is a Guest Diary by Elias Bou Zeid, an ISC intern as part of the SANS.edu BACS program]Intr... 2023-12-28 09:3:42 | 阅读: 13 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu security threats analysis network

Python Keylogger Using Mailtrap.io, (Sat, Dec 23rd) I found another Python keylogger... This is pretty common because Python has plenty of modules to i... 2023-12-23 15:7:7 | 阅读: 8 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu mailtrap receiver malicious 2525

Shall We Play a Game?, (Fri, Dec 22nd) Our youngest readers won’t probably not get the point with this quote, it’s from the 1983 movie “Wa... 2023-12-22 14:5:22 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu python roaming leveldb avatar