Scans for ownCloud Vulnerability (CVE-2023-49103), (Mon, Nov 27th) Last week, ownCloud released an advisory disclosing a new vulnerability, CVE-2023-49103 [1]. The vu... 2023-11-27 22:22:54 | 阅读: 18 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu owncloud passwords 203 graphapi 235

ISC Stormcast For Monday, November 27th, 2023 https://isc.sans.edu/podcastdetail/8752, (Mon, Nov 27th) 2023-11-27 10:0:2 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers isc feeds stormcast mastodon

OVA Files, (Sat, Nov 25th) I had to figure out when a OVA file was published (for a virtual machine). The Open Virtualization... 2023-11-25 16:50:11 | 阅读: 8 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu ovf ova machine mf

Wireshark 4.2.0 Released, (Sat, Nov 25th) Published: 2023-11-25Last Updated: 2023-11-25 08:48:58 UTCby Didier Stevens (Version: 1)About 1... 2023-11-25 16:48:58 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu didier stevens bugfix ssh

Happy Birthday DShield, (Fri, Nov 24th) read file error: read notes: is a directory... 2023-11-24 11:20:40 | 阅读: 5 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu weekend earliest everybody liner piping

CVE-2023-1389: A New Means to Expand Botnets, (Wed, Nov 22nd) [This is a Guest Diary by Jonah Latimer, an ISC intern as part of the SANS.edu BACS program]Intro... 2023-11-23 02:25:42 | 阅读: 24 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 1389 firmware honeypot archer exploited

Overflowing Web Honeypot Logs, (Mon, Nov 20th) While reviewing one of my honeypots to convert some of the JSON data, I noticed some of my files we... 2023-11-20 08:4:9 | 阅读: 15 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu jndi qualystest mozilla windows sizes

Quasar RAT Delivered Through Updated SharpLoader, (Sat, Nov 18th) SharpLoader is a very old project! I found repositories on Gitlab that are 8 years old[1]! Its purp... 2023-11-18 14:19:45 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu payload writeline bytearray loader

Phishing page with trivial anti-analysis features, (Fri, Nov 17th) Anti-analysis features in phishing pages – especially in those, which threat actors send out as e-m... 2023-11-17 18:12:27 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu phishing somewhat attachment analysis diary

ISC Stormcast For Friday, November 17th, 2023 https://isc.sans.edu/podcastdetail/8750, (Fri, Nov 17th) 2023-11-17 10:0:1 | 阅读: 5 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc feeds papers developers

Beyond -n: Optimizing tcpdump performance, (Thu, Nov 16th) If you ever had to acquire packets from a network, you probably used tcpdump. Other tools (Wireshar... 2023-11-17 00:7:43 | 阅读: 4 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu msec gdate datamash verbosity 499

ISC Stormcast For Thursday, November 16th, 2023 https://isc.sans.edu/podcastdetail/8748, (Thu, Nov 16th) 2023-11-16 10:0:2 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers isc feeds rpi mastodon

Redline Dropped Through MSIX Package, (Wed, Nov 15th) The MSIX package file format has been in the light for a few weeks. The GHOSTPULSE[1] malware has b... 2023-11-15 15:38:15 | 阅读: 4 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu remnux msix malwarezoo zipdump

ISC Stormcast For Wednesday, November 15th, 2023 https://isc.sans.edu/podcastdetail/8746, (Wed, Nov 15th) 2023-11-15 10:0:2 | 阅读: 5 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu feeds isc papers rpi stormcast

Microsoft Patch Tuesday November 2023, (Tue, Nov 14th) Today, Microsoft released patches for 64 different vulnerabilities in Microsoft products, 14 vulner... 2023-11-15 02:42:33 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu microsoft windows chromium remote elevation

ISC Stormcast For Tuesday, November 14th, 2023 https://isc.sans.edu/podcastdetail/8744, (Tue, Nov 14th) ISC Stormcast For Tuesday, November 14th, 2023 https://isc.sans.edu/podcastdetail/8744... 2023-11-14 10:0:1 | 阅读: 6 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc 8744 stormcast tuesday 14th

Noticing command and control channels by reviewing DNS protocols, (Mon, Nov 13th) Malicious software pieces installed in computers call home. Some of them can be noticed because the... 2023-11-14 08:1:25 | 阅读: 13 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu network ndr malicious repetitions afford

ISC Stormcast For Monday, November 13th, 2023 https://isc.sans.edu/podcastdetail/8742, (Mon, Nov 13th) 2023-11-13 10:0:2 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers isc feeds manuel stormcast

Routers Targeted for Gafgyt Botnet [Guest Diary], (Thu, Nov 9th) [This is a Guest Diary by Austin Long, an ISC intern as part of the SANS.edu BACS program]Introdu... 2023-11-10 10:54:58 | 阅读: 17 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu honeypot tz z1 ssh download

ISC Stormcast For Friday, November 10th, 2023 https://isc.sans.edu/podcastdetail/8740, (Fri, Nov 10th) 2023-11-10 10:0:2 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers feeds isc 10th ssh