Diaries by Keyword - SANS Internet Storm Center

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Handler on Duty: Jesse La Grew

Threat Level: green

Date	Author	Title
JAVA JRE 6
2010-01-13	Guy Bruneau	Sun Java JRE 6 Update 18 Released
2009-03-25	David Goldsmith	Java Runtime Environment 6.0 Update 13 Released
JAVA
2024-03-28/a>	Xavier Mertens	From JavaScript to AsyncRAT
2024-02-28/a>	Johannes Ullrich	Exploit Attempts for Unknown Password Reset Vulnerability
2024-02-21/a>	Jan Kopriva	Phishing pages hosted on archive.org
2023-11-17/a>	Jan Kopriva	Phishing page with trivial anti-analysis features
2023-05-20/a>	Xavier Mertens	Phishing Kit Collecting Victim's IP Address
2022-06-16/a>	Xavier Mertens	Houdini is Back Delivered Through a JavaScript Dropper
2022-06-01/a>	Jan Kopriva	HTML phishing attachments - now with anti-analysis features
2022-03-31/a>	Johannes Ullrich	Spring Vulnerability Update - Exploitation Attempts CVE-2022-22965
2022-03-30/a>	Johannes Ullrich	Possible new Java Spring Framework Vulnerability (Updated: not a Spring problem)
2022-03-30/a>	Johannes Ullrich	Java Springtime Confusion: What Vulnerability are We Talking About
2022-01-18/a>	Jan Kopriva	Phishing e-mail with...an advertisement?
2021-11-18/a>	Xavier Mertens	JavaScript Downloader Delivers Agent Tesla Trojan
2021-10-21/a>	Brad Duncan	"Stolen Images Evidence" campaign pushes Sliver-based malware
2021-10-09/a>	Guy Bruneau	Scanning for Previous Oracle WebLogic Vulnerabilities
2021-05-22/a>	Xavier Mertens	"Serverless" Phishing Campaign
2021-05-18/a>	Xavier Mertens	From RunDLL32 to JavaScript then PowerShell
2021-04-28/a>	Xavier Mertens	Deeper Analyzis of my Last Malicious PowerPoint Add-On
2021-01-22/a>	Xavier Mertens	Another File Extension to Block in your MTA: .jnlp
2020-11-13/a>	Xavier Mertens	Old Worm But New Obfuscation Technique
2020-07-24/a>	Xavier Mertens	Compromized Desktop Applications by Web Technologies
2020-07-08/a>	Xavier Mertens	If You Want Something Done Right, You Have To Do It Yourself... Malware Too!
2020-06-11/a>	Xavier Mertens	Anti-Debugging JavaScript Techniques
2020-03-27/a>	Xavier Mertens	Malicious JavaScript Dropping Payload in the Registry
2019-08-09/a>	Xavier Mertens	100% JavaScript Phishing Page
2019-06-10/a>	Xavier Mertens	Interesting JavaScript Obfuscation Example
2019-02-07/a>	Xavier Mertens	Phishing Kit with JavaScript Keylogger
2018-07-13/a>	Xavier Mertens	Cryptominer Delivered Though Compromized JavaScript File
2018-06-18/a>	Xavier Mertens	Malicious JavaScript Targeting Mobile Browsers
2017-11-03/a>	Xavier Mertens	Simple Analysis of an Obfuscated JAR File
2017-06-22/a>	Xavier Mertens	Obfuscating without XOR
2017-03-24/a>	Xavier Mertens	Nicely Obfuscated JavaScript Sample
2017-03-04/a>	Xavier Mertens	How your pictures may affect your website reputation
2017-02-12/a>	Xavier Mertens	Analysis of a Suspicious Piece of JavaScript
2016-08-28/a>	Guy Bruneau	Spam with Obfuscated Javascript
2016-06-18/a>	Rob VandenBrink	Controlling JavaScript Malware Before it Runs
2016-02-20/a>	Didier Stevens	Locky: JavaScript Deobfuscation
2016-02-07/a>	Xavier Mertens	More Malicious JavaScript Obfuscation
2016-01-15/a>	Xavier Mertens	JavaScript Deobfuscation Tool
2015-11-09/a>	John Bambenek	ICYMI: Widespread Unserialize Vulnerability in Java
2015-08-07/a>	Tony Carothers	Critical Firefox Update Today
2014-12-06/a>	Rick Wanner	Google App Engine Java Security Sandbox bypasses
2014-08-29/a>	Johannes Ullrich	False Positive or Not? Difficult to Analyze Javascript
2014-07-15/a>	Daniel Wesemann	Oracle Java: 20 new vulnerabilities patched
2014-07-13/a>	Tony Carothers	Oracle July 2014 Update Pre-Notification
2014-07-05/a>	Guy Bruneau	Java Support ends for Windows XP
2014-07-02/a>	Johannes Ullrich	Simple Javascript Extortion Scheme Advertised via Bing
2013-12-23/a>	Rob VandenBrink	How-To's for the Holidays - Java Whitelisting using AD Group Policy
2013-10-28/a>	Daniel Wesemann	Exploit cocktail (Struts, Java, Windows) going after 3-month old vulnerabilities
2013-10-15/a>	Rob VandenBrink	Java Quarterly Updates
2013-09-10/a>	Swa Frantzen	More Black Tuesday workload
2013-08-07/a>	Johannes Ullrich	Firefox 23 and Mixed Active Content
2013-04-23/a>	Russ McRee	Microsoft's Security Intelligence Report (SIRv14) released
2013-04-19/a>	Russ McRee	Java 8 release schedule delayed for renewed focus on security
2013-04-16/a>	Rob VandenBrink	Java 7 Update 21 is available - Watch for Behaviour Changes !
2013-03-07/a>	Guy Bruneau	Apple Blocking Java Web plug-in
2013-03-05/a>	Richard Porter	Java j6u43 update #YAJU http://www.oracle.com/technetwork/java/javase/6u43-relnotes-1915290.html
2013-03-04/a>	Richard Porter	Java 7u17 update #YAJU http://www.oracle.com/technetwork/java/javase/7u17-relnotes-1915289.html
2013-03-01/a>	Jim Clausing	And the Java 0-days just keep on coming
2013-02-26/a>	Rob VandenBrink	All I need Java for is ....
2013-02-20/a>	Johannes Ullrich	Update Palooza
2013-02-19/a>	Johannes Ullrich	Oracle Updates Java (Java 7 Update 15, Java 6 update 41)
2013-02-08/a>	Kevin Shortt	Is it Spam or Is it Malware?
2013-02-01/a>	Jim Clausing	Oracle quitely releases Java 7u13 early
2013-01-19/a>	Guy Bruneau	Java 7 Update 11 Still has a Flaw
2013-01-15/a>	Rob VandenBrink	When Disabling IE6 (or Java, or whatever) is not an Option...
2013-01-13/a>	Stephen Hall	Java 0-Day patched as Java 7 U 11 released
2013-01-12/a>	Stephen Hall	Java 0-day impact to Java 6 (and beyond?)
2013-01-10/a>	Johannes Ullrich	Java is still exploitable and is likely going to remain so.
2012-11-01/a>	Daniel Wesemann	Patched your Java yet?
2012-10-18/a>	Rob VandenBrink	Another Java update! Java SE 1.6.0_37 Available ==> http://www.oracle.com/technetwork/java/javase/releasenotes-136954.html
2012-10-17/a>	Rob VandenBrink	Time to update - Java version 7 update 9 (JRE 7u9, JDK 7u9) is out! Release notes here - http://www.oracle.com/technetwork/java/javase/7u9-relnotes-1863279.html
2012-09-01/a>	Russ McRee	Blackhole targeting Java vulnerability via fake Microsoft Services Agreement email phish
2012-08-31/a>	Russ McRee	Not so fast: Java 7 Update 7 critical vulnerability discovered in less than 24 hours
2012-08-27/a>	Kevin Liston	Quick Bits about Today's Java 0-Day
2012-08-05/a>	Daniel Wesemann	Phishing for Payroll with unpatched Java
2012-06-25/a>	Guy Bruneau	Using JSDetox to Analyze and Deobfuscate Javascript
2012-06-12/a>	Swa Frantzen	Java 7u5 and 6u33 released
2012-05-22/a>	Johannes Ullrich	nmap 6 released
2012-04-25/a>	Daniel Wesemann	Blacole's obfuscated JavaScript
2012-04-12/a>	Guy Bruneau	Apple Java Updates for Mac OS X
2012-04-06/a>	Johannes Ullrich	Another OS X Java Patch
2012-03-25/a>	Daniel Wesemann	evilcode.class
2012-02-16/a>	Tony Carothers	Java Update for February
2012-01-22/a>	Johannes Ullrich	Javascript DDoS Tool Analysis
2012-01-03/a>	Bojan Zdrnja	The tale of obfuscated JavaScript continues
2011-12-12/a>	Daniel Wesemann	Java 6u30 released
2011-12-10/a>	Daniel Wesemann	Unwanted Presents
2011-12-07/a>	Lenny Zeltser	V8 as an Alternative to SpiderMonkey for JavaScript Deobfuscation
2011-10-22/a>	Guy Bruneau	Oracle Java SE Critical Patch Update
2011-09-05/a>	Raul Siles	Java 7 Officially Released
2011-08-19/a>	Kevin Shortt	Java SE 6 Update 27 released. No security updates, many bug fixes ==> http://www.oracle.com/technetwork/java/javase/6u27-relnotes-444147.html
2011-07-28/a>	Guy Bruneau	Java 7.0 released. Get it here - http://blogs.oracle.com/javase/entry/java_7_has_released
2011-06-28/a>	Johannes Ullrich	Update: Java update for OS X fixes security issues http://support.apple.com/kb/HT1222
2011-06-07/a>	Johannes Ullrich	Oracle Releases Java Version 1.6.0.26 http://java.com/en/download/manual.jsp
2011-06-06/a>	Manuel Humberto Santander Pelaez	Phishing: Same goal, same techniques and people still falling for such scams
2011-06-03/a>	Guy Bruneau	Oracle Java SE Critical Patch Update Pre-Release Announcement - June 2011
2011-05-01/a>	Deborah Hale	Java 6.25 Is Now Available
2011-04-23/a>	Manuel Humberto Santander Pelaez	Image search can lead to malware download
2011-03-09/a>	Jim Clausing	Apple updates Java
2011-02-15/a>	Jason Lam	Oracle Java 6 Update 24
2011-02-09/a>	Mark Hofman	Java Floating point issue (CVE-2010-4476)
2011-02-04/a>	Daniel Wesemann	Oh, just click "yes"
2010-12-29/a>	Daniel Wesemann	Beware of strange web sites bearing gifts ...
2010-12-24/a>	Daniel Wesemann	A question of class
2010-12-08/a>	Rob VandenBrink	Java 6, Update 23 is out => http://java.sun.com/javase/6/webnotes/ReleaseNotes.html , http://www.oracle.com/technetwork/java/javase/6u23releasenotes-191058.html , http://www.oracle.com/technetwork/java/javase/2col/6u23bugfixes-191074.html
2010-12-02/a>	Kevin Johnson	Robert Hansen and our happiness
2010-11-11/a>	Daniel Wesemann	Java Exploits
2010-07-18/a>	Manuel Humberto Santander Pelaez	New metasploit GUI written in Java
2010-07-04/a>	Manuel Humberto Santander Pelaez	Malware inside PDF Files
2010-05-23/a>	Manuel Humberto Santander Pelaez	Oracle Java SE and Java for Business 'MixerSequencer' Remote Code Execution Vulnerability
2010-04-10/a>	Andre Ludwig	New bug/exploit for javaws
2010-04-02/a>	Guy Bruneau	Oracle Java SE and Java for Business Critical Patch Update Advisory
2010-03-05/a>	Kyle Haugsness	Javascript obfuscators used in the wild
2010-01-13/a>	Guy Bruneau	Sun Java JRE 6 Update 18 Released
2009-12-05/a>	Guy Bruneau	Java JRE Buffer and Integer Overflow
2009-09-08/a>	Guy Bruneau	Bug Fixes in Sun SDK 5 and Java SE 6
2009-08-04/a>	donald smith	Java Security Update
2009-07-15/a>	Bojan Zdrnja	Make sure you update that Java
2009-07-01/a>	Bojan Zdrnja	Mobile phone trojans
2009-06-10/a>	Swa Frantzen	Java 6 update 14 released
2009-05-22/a>	Mark Hofman	Patching and Apple - Java issue
2009-05-04/a>	Tom Liston	Adobe Reader/Acrobat Critical Vulnerability
2009-04-07/a>	Bojan Zdrnja	Advanced JavaScript obfuscation (or why signature scanning is a failure)
2009-04-02/a>	Bojan Zdrnja	JavaScript insertion and log deletion attack tools
2009-03-25/a>	David Goldsmith	Java Runtime Environment 6.0 Update 13 Released
2009-02-25/a>	Andre Ludwig	Adobe Acrobat pdf 0-day exploit, No JavaScript needed!
2009-02-10/a>	Swa Frantzen	Java up to date ?
2008-07-14/a>	Daniel Wesemann	Obfuscated JavaScript Redux
2008-07-09/a>	Johannes Ullrich	Java Update
2008-06-30/a>	Marcus Sachs	More SQL Injection with Fast Flux hosting
2008-05-20/a>	Raul Siles	List of malicious domains inserted through SQL injection
2008-05-20/a>	Raul Siles	Java 6 Update 6 has been released
2008-04-06/a>	Daniel Wesemann	Advanced obfuscated JavaScript analysis
2008-04-03/a>	Bojan Zdrnja	Mixed (VBScript and JavaScript) obfuscation
JRE
2020-07-08/a>	Xavier Mertens	If You Want Something Done Right, You Have To Do It Yourself... Malware Too!
2012-03-09/a>	Guy Bruneau	VMware New and Updated Advisories
2011-10-18/a>	Rob VandenBrink	Java SE 6 Update 29 - http://www.oracle.com/technetwork/java/javase/6u29-relnotes-507960.html . Of particular interest is the Blocklist feature (introduced in 6u14) - http://www.oracle.com/technetwork/java/javase/6u14-137039.html#blocklist-jar-6u14
2010-01-30/a>	Stephen Hall	New and updated VMWare advisories
2010-01-13/a>	Guy Bruneau	Sun Java JRE 6 Update 18 Released
2009-12-05/a>	Guy Bruneau	Java JRE Buffer and Integer Overflow
2009-03-25/a>	David Goldsmith	Java Runtime Environment 6.0 Update 13 Released
6
2023-12-09/a>	Didier Stevens	IPv4-mapped IPv6 Address Used For Obfuscation
2023-10-23/a>	Johannes Ullrich	How an AppleTV may take down your (#IPv6) network
2023-10-07/a>	Didier Stevens	Binary IPv6 Addresses
2023-10-05/a>	Jim Clausing	New tool: le-hex-to-ip.py
2023-07-29/a>	Xavier Mertens	Do Attackers Pay More Attention to IPv6?
2023-05-07/a>	Didier Stevens	Quickly Finding Encoded Payloads in Office Documents
2023-02-22/a>	Johannes Ullrich	Internet Wide Scan Fingerprinting Confluence Servers
2023-02-19/a>	Didier Stevens	"Unsupported 16-bit Application" or HTML?
2023-01-17/a>	Johannes Ullrich	Packet Tuesday: IPv6 Router Advertisements https://www.youtube.com/watch?v=uRWpB_lYIZ8
2022-11-17/a>	Johannes Ullrich	Lessons Learned from Automatic Failover: When 8.8.8.8 "disappears". IPv6 to the Rescue?
2022-10-27/a>	Tom Webb	Supersizing your DUO and 365 Integration
2022-10-16/a>	Didier Stevens	Video: Analysis of a Malicious HTML File (QBot)
2022-10-13/a>	Didier Stevens	Analysis of a Malicious HTML File (QBot)
2022-09-09/a>	Didier Stevens	Maldoc With Decoy BASE64
2022-09-06/a>	Didier Stevens	Analysis of an Encoded Cobalt Strike Beacon
2022-08-28/a>	Didier Stevens	Dealing With False Positives when Scanning Memory Dumps for Cobalt Strike Beacons
2022-08-22/a>	Xavier Mertens	32 or 64 bits Malware?
2022-06-27/a>	Johannes Ullrich	Encrypted Client Hello: Anybody Using it Yet?
2022-06-19/a>	Didier Stevens	Video: Decoding Obfuscated BASE64 Statistically
2022-06-18/a>	Didier Stevens	Decoding Obfuscated BASE64 Statistically
2022-04-28/a>	Johannes Ullrich	A Day of SMB: What does our SMB/RPC Honeypot see? CVE-2022-26809
2022-04-14/a>	Johannes Ullrich	An Update on CVE-2022-26809 - MSRPC Vulnerabliity - PATCH NOW
2022-01-02/a>	Guy Bruneau	Exchange Server - Email Trapped in Transport Queues
2021-12-18/a>	Guy Bruneau	VMware Security Update - https://www.vmware.com/security/advisories/VMSA-2021-0030.html
2021-11-20/a>	Guy Bruneau	Hikvision Security Cameras Potentially Exposed to Remote Code Execution
2021-09-07/a>	Johannes Ullrich	Why I Gave Up on IPv6. And no, it is not because of security issues.
2021-07-16/a>	Xavier Mertens	Multiple BaseXX Obfuscations
2021-07-02/a>	Xavier Mertens	"inception.py"... Multiple Base64 Encodings
2021-06-30/a>	Johannes Ullrich	CVE-2021-1675: Incomplete Patch and Leaked RCE Exploit
2021-06-26/a>	Guy Bruneau	CVE-2019-9670: Zimbra Collaboration Suite XXE vulnerability
2021-06-11/a>	Xavier Mertens	Sonicwall SRA 4600 Targeted By an Old Vulnerability
2021-04-24/a>	Guy Bruneau	Base64 Hashes Used in Web Scanning
2021-02-25/a>	Jim Clausing	So where did those Satori attacks come from?
2021-02-16/a>	Jim Clausing	More weirdness on TCP port 26
2020-12-26/a>	Didier Stevens	base64dump.py Supported Encodings
2020-12-07/a>	Didier Stevens	Corrupt BASE64 Strings: Detection and Decoding
2020-10-28/a>	Jan Kopriva	SMBGhost - the critical vulnerability many seem to have forgotten to patch
2020-09-27/a>	Didier Stevens	Decoding Corrupt BASE64 Strings
2020-08-20/a>	Rob VandenBrink	Office 365 Mail Forwarding Rules (and other Mail Rules too)
2020-06-27/a>	Didier Stevens	Video: YARA's BASE64 Strings
2020-06-14/a>	Didier Stevens	YARA's BASE64 Strings
2020-06-08/a>	Didier Stevens	Translating BASE64 Obfuscated Scripts
2020-05-30/a>	Didier Stevens	YARA v4.0.1
2020-05-19/a>	Rick Wanner	What is up on Port 62234?
2020-05-10/a>	Didier Stevens	YARA v4.0.0: BASE64 Strings
2020-05-01/a>	Jim Clausing	Attack traffic on TCP port 9673
2020-01-16/a>	Bojan Zdrnja	Summing up CVE-2020-0601, or the Let?s Decrypt vulnerability
2020-01-15/a>	Johannes Ullrich	CVE-2020-0601 Followup
2019-12-02/a>	Jim Clausing	Next up, what's up with TCP port 26?
2019-11-19/a>	Johannes Ullrich	Cheap Chinese JAWS of DVR Exploitability on Port 60001
2019-10-27/a>	Guy Bruneau	Unusual Activity with Double Base64 Encoding
2019-08-01/a>	Johannes Ullrich	What is Listening On Port 9527/TCP?
2019-07-26/a>	Kevin Shortt	DVRIP Port 34567 - Uptick
2019-06-03/a>	Didier Stevens	Tip: BASE64 Encoded PowerShell Scripts are Recognizable by the Amount of Letter As
2019-04-07/a>	Guy Bruneau	Fake Office 365 Payment Information Update
2019-02-02/a>	Guy Bruneau	Scanning for WebDAV PROPFIND Exploiting CVE-2017-7269
2019-01-29/a>	Johannes Ullrich	A Not So Well Done Phish (Why Attackers need to Implement IPv6 Now! ;-) )
2018-05-22/a>	Guy Bruneau	VMware updates enable Hypervisor-Assisted Guest Mitigations for Speculative Store Bypass issue - https://www.vmware.com/security/advisories/VMSA-2018-0012.html
2018-02-02/a>	Xavier Mertens	Simple but Effective Malicious XLS Sheet
2018-01-19/a>	Jim Clausing	Followup to IPv6 brute force and IPv6 blocking
2018-01-09/a>	Jim Clausing	Are you watching for brute force attacks on IPv6?
2017-09-13/a>	Rob VandenBrink	No IPv6? Challenge Accepted! (Part 1)
2017-07-08/a>	Xavier Mertens	A VBScript with Obfuscated Base64 Data
2017-03-19/a>	Xavier Mertens	Searching for Base64-encoded PE Files
2017-03-03/a>	Lorna Hutcheson	BitTorrent or Something Else?
2016-11-24/a>	Didier Stevens	Extracting Shellcode From JavaScript
2016-10-22/a>	Guy Bruneau	Request for Packets TCP 4786 - CVE-2016-6385
2016-07-26/a>	Johannes Ullrich	Command and Control Channels Using "AAAA" DNS Records
2016-07-17/a>	Guy Bruneau	Juniper -> Junos: Self-signed certificate with spoofed trusted Issuer CN accepted as valid - https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10755&actp=search
2016-03-13/a>	Guy Bruneau	A Look at the Mandiant M-Trends 2016 Report
2016-02-28/a>	Guy Bruneau	RFC 6598 - Carrier Grade NAT
2016-02-13/a>	Guy Bruneau	VMware VMSA-2015-0007.3 has been Re-released
2016-02-02/a>	Johannes Ullrich	Targeted IPv6 Scans Using pool.ntp.org .
2016-01-31/a>	Guy Bruneau	OpenSSL 1.0.2 Advisory and Update
2016-01-05/a>	Guy Bruneau	What are you Concerned the Most in 2016?
2015-07-05/a>	Didier Stevens	Working with base64
2015-04-15/a>	Johannes Ullrich	MS15-034: HTTP.sys (IIS) DoS And Possible Remote Code Execution. PATCH NOW
2015-02-08/a>	Rob VandenBrink	BURP 1.6.10 Released
2014-09-25/a>	Johannes Ullrich	Update on CVE-2014-6271: Vulnerability in bash (shellshock)
2014-09-24/a>	Pedro Bueno	Attention *NIX admins, time to patch!
2014-09-15/a>	Johannes Ullrich	Google DNS Server IP Address Spoofed for SNMP reflective Attacks
2014-07-10/a>	Rob VandenBrink	Certificate Errors in Office 365 Today
2014-07-07/a>	Johannes Ullrich	Multi Platform *Coin Miner Attacking Routers on Port 32764
2014-04-23/a>	Johannes Ullrich	DHCPv6 and DUID Confusion
2014-04-08/a>	Guy Bruneau	OpenSSL CVE-2014-0160 Fixed
2014-03-24/a>	Johannes Ullrich	New Microsoft Advisory: Unpatched Word Flaw used in Targeted Attacks
2014-03-20/a>	Johannes Ullrich	Normalizing IPv6 Addresses
2014-02-27/a>	Richard Porter	DDoS and BCP 38
2014-01-30/a>	Johannes Ullrich	IPv6 and isc.sans.edu (Update)
2014-01-13/a>	Johannes Ullrich	Got an IPv6 Firewall?
2013-11-19/a>	Jim Clausing	Updated dumpdns.pl
2013-08-28/a>	Bojan Zdrnja	MS13-056 (false positive)? alerts
2013-08-15/a>	Johannes Ullrich	Microsoft Pulls MS013-061 due to problems with Exchange Server 2013 http://blogs.technet.com/b/exchange/archive/2013/08/14/exchange-2013-security-update-ms13-061-status-update.aspx
2013-07-12/a>	Johannes Ullrich	Microsoft Teredo Server "Sunset"
2013-06-12/a>	Johannes Ullrich	Stupid Little IPv6 Tricks
2013-05-20/a>	Johannes Ullrich	Ubuntu Package available to submit firewall logs to DShield
2013-05-19/a>	Kevin Shortt	Port 51616 - Got Packets?
2013-05-17/a>	Johannes Ullrich	SSL: Another reason not to ignore IPv6
2013-04-14/a>	Johannes Ullrich	Protocol 61 Packets Follow Up
2013-04-13/a>	Johannes Ullrich	Protocol 61: Anybody got packets?
2013-03-27/a>	Adam Swanger	IPv6 Focus Month: Guest Diary: Stephen Groat - IPv6 moving target defense
2013-03-25/a>	Johannes Ullrich	IPv6 Focus Month: IPv6 over IPv4 Preference
2013-03-21/a>	Jim Clausing	IPv6 Focus Month: Guest Diary: Matthew Newton - IPv6 Cat Feeder - Turning those extra bits into bytes, literally
2013-03-19/a>	Johannes Ullrich	IPv6 Focus Month: The warm and fuzzy side of IPv6
2013-03-18/a>	Johannes Ullrich	IPv6 Focus Month: What is changing with DHCP
2013-03-13/a>	Johannes Ullrich	IPv6 Focus Month: Kaspersky Firewall IPv6 Vulnerability
2013-03-12/a>	Swa Frantzen	IPv6 Focus Month: How to say no!
2013-03-11/a>	Richard Porter	IPv6 Focus Month: Traffic Testing, Firewalls, ACLs, pt 1
2013-03-09/a>	Guy Bruneau	IPv6 Focus Month: IPv6 Encapsulation - Protocol 41
2013-03-08/a>	Johannes Ullrich	IPv6 Focus Month: Filtering ICMPv6 at the Border
2013-03-07/a>	Rob VandenBrink	IPv6 Focus Month: Barriers to Implementing IPv6
2013-03-06/a>	Adam Swanger	IPv6 Focus Month: Guest Diary: Stephen Groat - Geolocation Using IPv6 Addresses
2013-03-05/a>	Mark Hofman	IPv6 Focus Month: Device Defaults
2013-03-04/a>	Johannes Ullrich	IPv6 Focus Month: Addresses
2013-03-01/a>	Jim Clausing	IPv6 Focus Month at the Internet Storm Center
2013-02-19/a>	Johannes Ullrich	APT1, Unit 61398 and are state sponsored attacks real
2013-02-11/a>	John Bambenek	OpenSSL 1.0.1e Released with Corrected fix for CVE-2013-1069, more here: http://www.openssl.org/
2013-01-31/a>	Johannes Ullrich	IPv6 Focus Month
2012-06-01/a>	Johannes Ullrich	What Does "IPv6 Day" mean to you?
2012-05-17/a>	Johannes Ullrich	New IPv6 Video: IPv6 Router Advertisements https://isc.sans.edu/ipv6videos
2012-03-09/a>	Guy Bruneau	Nmap 5.61TEST5 released with 43 new scripts,improved OS & version detection, and more available for download - http://nmap.org/download.html
2012-02-24/a>	Guy Bruneau	Flashback Trojan in the Wild
2012-01-12/a>	Rob VandenBrink	PHP 5.39 was release on the 10th, amongst other things, it addresses CVE-2011-4885 (prevents attacks based on hash collisions) and CVE-2011-4566 (integer overflow when parsing invalid exif header)
2011-11-04/a>	Guy Bruneau	New Poll: In the coming 12 months, what is your deployment plan or status with IPv6?
2011-10-23/a>	Guy Bruneau	tcpdump and IPv6
2011-10-06/a>	Rob VandenBrink	Apache HTTP Server mod_proxy reverse proxy issue
2011-09-09/a>	Guy Bruneau	IPv6 and DNS Sinkhole
2011-08-22/a>	Jim Clausing	Are your tools ready for IPv6? (part 2)
2011-08-04/a>	Jim Clausing	Are your tools ready for IPv6? (part 1)
2011-06-09/a>	Johannes Ullrich	IPv6 Day Summary
2011-06-08/a>	Johannes Ullrich	IPv6 Day Started
2011-06-02/a>	Johannes Ullrich	IPv6 RA-Guard: How it works and how to defeat it
2011-06-01/a>	Johannes Ullrich	Enabling Privacy Enhanced Addresses for IPv6
2011-05-03/a>	Johannes Ullrich	Analyzing Teredo with tshark and Wireshark
2011-04-21/a>	Guy Bruneau	Silverlight Update Available
2011-04-11/a>	Johannes Ullrich	Layer 2 DoS and other IPv6 Tricks
2011-04-05/a>	Johannes Ullrich	IPv6 MITM via fake router advertisements
2011-02-01/a>	Johannes Ullrich	The End Of IP As We Know It
2011-01-27/a>	Guy Bruneau	ISC DHCP DHCPv6 Vulnerability
2011-01-05/a>	Johannes Ullrich	ipv6finder : How ready are you for IPv6?
2010-11-16/a>	Guy Bruneau	OpenSSL TLS Extension Parsing Race Condition
2010-11-12/a>	Guy Bruneau	Honeynet Forensic Challenge - Analyzing Malicious Portable Destructive Files
2010-10-30/a>	Guy Bruneau	Security Update for Shockwave Player
2010-10-28/a>	Manuel Humberto Santander Pelaez	CVE-2010-3654 - New dangerous 0-day authplay library adobe products vulnerability
2010-07-29/a>	Rob VandenBrink	Snort 2.8.6.1 and Snort 2.9 Beta Released
2010-07-26/a>	Guy Bruneau	SophosLabs Released Free Tool to Validate Microsoft Shortcut
2010-07-20/a>	Manuel Humberto Santander Pelaez	LNK vulnerability now with Metasploit module implementing the WebDAV method
2010-06-23/a>	Johannes Ullrich	IPv6 Support in iOS 4
2010-03-24/a>	Kyle Haugsness	Wax nostalgic - commodore64 updated to present time
2010-03-10/a>	Rob VandenBrink	Microsoft Security Advisory 981374 - Remote Code Execution Vulnerability for IE6 and IE7
2010-02-26/a>	Rick Wanner	NIST Guidelines for Secure Deployment of IPv6 - http://csrc.nist.gov/publications/drafts/800-119/draft-sp800-119_feb2010.pdf
2010-02-16/a>	Jim Clausing	Teredo request for packets
2010-02-16/a>	Johannes Ullrich	Teredo "stray packet" analysis
2010-02-02/a>	Johannes Ullrich	New IPv6 Screencast Videos: http://isc.sans.org/ipv6videos (Today: blocking and detecting IPv6 in Linux)
2010-01-19/a>	Jim Clausing	49Gbps DDoS, IPv4 exhaustion, and DNSSEC, oh my!
2010-01-13/a>	Guy Bruneau	Sun Java JRE 6 Update 18 Released
2010-01-12/a>	Adrien de Beaupre	PoC for CVE-2009-0689 MacOS X 10.5/10.6 vulnerability
2010-01-12/a>	Johannes Ullrich	IPv6 and isc.sans.org
2010-01-09/a>	G. N. White	What's Up With All The Port Scanning Using TCP/6000 As A Source Port?
2010-01-06/a>	Johannes Ullrich	Denial of Service Attack Aftermath (and what did Iran have to do with it?)
2010-01-06/a>	Johannes Ullrich	New Tool: IPv6 conversions http://isc.sans.org/tools/ipv6.html
2009-11-22/a>	Marcus Sachs	IE6 and IE7 0-Day Reported
2009-11-07/a>	Marcus Sachs	More Thoughts on Legacy Systems
2009-10-28/a>	Johannes Ullrich	Sniffing SSL: RFC 4366 and TLS Extensions
2009-10-15/a>	Deborah Hale	Cyber Security Awareness Month - Day 15 - Ports 995, 465, and 993 - Secure Email
2009-10-11/a>	Mark Hofman	Cyber Security Awareness Month - Day 12 Ports 161/162 Simple Network Management Protocol (SNMP)
2009-10-06/a>	Adrien de Beaupre	Cyber Security Awareness Month - Day 6 ports 67&68 udp - bootp and dhcp
2009-09-07/a>	Jim Clausing	Request for packets
2009-05-02/a>	Rick Wanner	Significant increase in port 2967 traffic
2009-04-30/a>	Marcus Sachs	ARIN Notification Concerning IPv6
2009-04-18/a>	Johannes Ullrich	Twitter Packet Challenge Solution
2009-03-25/a>	David Goldsmith	Java Runtime Environment 6.0 Update 13 Released
2009-02-13/a>	Andre Ludwig	Third party information on conficker
2009-01-12/a>	William Salusky	Downadup / Conficker - MS08-067 exploit and Windows domain account lockout
2008-12-13/a>	Jim Clausing	Followup from last shift and some research to do.
2008-11-17/a>	Jim Clausing	How are you coming with that IPv6 migration?
2006-11-20/a>	Joel Esler	MS06-070 Remote Exploit
2006-10-10/a>	Johannes Ullrich	MS06-056: ASP.NET XSS Information Disclosure Vulnerability (moderate)
2006-10-10/a>	Johannes Ullrich	MS06-061: XSLT/MSXML Buffer Overflow Code Execution Vulnerability (moderate)
2006-10-10/a>	Kyle Haugsness	MS06-063: Mailslot DoS (Server service)
2006-09-19/a>	Swa Frantzen	Yet another MSIE 0-day: VML
2006-09-12/a>	Swa Frantzen	Microsoft security patches for September 2006

JAVA JRE 6

JAVA

JRE

6