Visual Examples of Code Injection, (Thu, Nov 9th) Code injection techniques (T1055 from MITRE[1]) is a common technique these days. It’s a nice way f... 2023-11-9 16:10:52 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu microsoft t1055 injection legit malicious

ISC Stormcast For Thursday, November 9th, 2023 https://isc.sans.edu/podcastdetail/8738, (Thu, Nov 9th) 2023-11-9 10:0:2 | 阅读: 9 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu feeds isc papers stormcast ssh

Example of Phishing Campaign Project File, (Wed, Nov 8th) We all have a love and hate relation with emails. When newcomers on the Internet starts to get emai... 2023-11-8 14:37:8 | 阅读: 14 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 726f 6a65 6374 696f phishing

ISC Stormcast For Wednesday, November 8th, 2023 https://isc.sans.edu/podcastdetail/8736, (Wed, Nov 8th) 2023-11-8 10:0:2 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers feeds isc honeypot 8736

What's Normal: New uses of DNS, Discovery of Designated Resolvers (DDR), (Tue, Nov 7th) Collecting and analyzing DNS logs should be at the top of your agenda regarding network monitoring.... 2023-11-7 23:38:58 | 阅读: 6 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu resolver network ddr svcb arpa

ISC Stormcast For Tuesday, November 7th, 2023 https://isc.sans.edu/podcastdetail/8734, (Tue, Nov 7th) 2023-11-7 10:0:2 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers feeds isc developers

Exploit Activity for CVE-2023-22518, Atlassian Confluence Data Center and Server, (Mon, Nov 6th) Last week, Atlassian published an advisory for CVE-2023-22518. The vulnerability is a trivial to ex... 2023-11-6 21:40:13 | 阅读: 4 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu username atlassian 2nd indian 22518

ISC Stormcast For Monday, November 6th, 2023 https://isc.sans.edu/podcastdetail/8732, (Mon, Nov 6th) 2023-11-6 10:0:2 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers feeds isc rpi glass

ISC Stormcast For Friday, November 3rd, 2023 https://isc.sans.edu/podcastdetail/8730, (Fri, Nov 3rd) 2023-11-3 10:0:2 | 阅读: 8 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu feeds papers isc glass

Quick Tip For Artificially Inflated PE Files, (Thu, Nov 2nd) In his diary entry "Size Matters for Many Security Controls", Xavier talks about a PE file that has... 2023-11-2 23:51:36 | 阅读: 8 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu nul overlay xavier stripped security

ISC Stormcast For Thursday, November 2nd, 2023 https://isc.sans.edu/podcastdetail/8728, (Thu, Nov 2nd) 2023-11-2 10:0:2 | 阅读: 9 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers feeds isc weblogs thursday

Malware Dropped Through a ZPAQ Archive, (Wed, Nov 1st) Did you ever seen ZPAQ archives? This morning, my honeypot captured a phishing attempt which lured... 2023-11-1 14:33:33 | 阅读: 20 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu zpaq windows remnux security peazip

ISC Stormcast For Wednesday, November 1st, 2023 https://isc.sans.edu/podcastdetail/8726, (Wed, Nov 1st) 2023-11-1 10:0:2 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers feeds isc developers wednesday

Multiple Layers of Anti-Sandboxing Techniques, (Tue, Oct 31st) It has been a while that I did not find an interesting malicious Python script. All the scripts tha... 2023-10-31 22:51:53 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu ctypes ulonglong win32api npnpcrlvj client

ISC Stormcast For Tuesday, October 31st, 2023 https://isc.sans.edu/podcastdetail/8724, (Tue, Oct 31st) 2023-10-31 08:5:28 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers feeds isc johannes honeypot

Flying under the Radar: The Privacy Impact of multicast DNS, (Mon, Oct 30th) The recent patch to iOS/macOS for CVE-2023-42846 made me think it is probably time to write up a re... 2023-10-30 23:30:39 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu mdns multicast network upnp ssdp

ISC Stormcast For Monday, October 30th, 2023 https://isc.sans.edu/podcastdetail/8722, (Mon, Oct 30th) 2023-10-30 09:43:13 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu feeds papers isc dshield 8722

Spam or Phishing? Looking for Credentials & Passwords, (Sun, Oct 29th) We are now at the end of the Cybersecurity Awareness month, it is important to remain digitally saf... 2023-10-30 01:9:35 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu security ipfs cyberchef

Size Matters for Many Security Controls, (Sat, Oct 28th) This week, I'm teaching FOR610 in Manchester, and while my students are busy resolving some challen... 2023-10-28 19:54:41 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu tgz t1027 security padded

ISC Stormcast For Friday, October 27th, 2023 https://isc.sans.edu/podcastdetail/8720, (Fri, Oct 27th) 2023-10-27 18:45:2 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc papers feeds ullrich developers