Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: InfoSec Diary Blog Archive InfoSec Diary Blog Archive


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Search Diaries:


Archive Matrix

2003JanFebMarApr MayJunJulAugSepOctNovDec
2004JanFebMarAprMayJunJulAugSepOctNovDec
2005JanFebMarAprMayJunJulAugSepOctNovDec
2006JanFebMarAprMayJunJulAugSepOctNovDec
2007JanFebMarAprMayJunJulAugSepOctNovDec
2008JanFebMarAprMayJunJulAugSepOctNovDec
2009JanFebMarAprMayJunJulAugSepOctNovDec
2010JanFebMarAprMayJunJulAugSepOctNovDec
2011JanFebMarAprMayJunJulAugSepOctNovDec
2012JanFebMarAprMayJunJulAugSepOctNovDec
2013JanFebMarAprMayJunJulAugSepOctNovDec
2014JanFebMarAprMayJunJulAugSepOctNovDec
2015JanFebMarAprMayJunJulAugSepOctNovDec
2016JanFebMarAprMayJunJulAugSepOctNovDec
2017JanFebMarAprMayJunJulAugSepOctNovDec
2018JanFebMarAprMayJunJulAugSepOctNovDec
2019JanFebMarAprMayJunJulAugSepOctNovDec
2020JanFebMarAprMayJunJulAugSepOct

Archive Diary List

2020-8-01

DateAuthorTitle
2020-08-31Johannes UllrichISC Stormcast For Monday, August 31st 2020 (oneliner) (0 Comments)
2020-08-31Didier StevensFinding The Original Maldoc (0 Comments)
2020-08-30Johannes UllrichCenturyLink Outage Causing Internet Wide Problems (1 Comments)
2020-08-29Didier StevensMalicious Excel Sheet with a NULL VT Score: More Info (1 Comments)
2020-08-28Johannes UllrichISC Stormcast For Friday, August 28th 2020 (oneliner) (0 Comments)
2020-08-28Xavier MertensExample of Malicious DLL Injected in PowerShell (0 Comments)
2020-08-27Jan KoprivaSecurity.txt - one small file for an admin, one giant help to a security researcher (0 Comments)
2020-08-27Johannes UllrichISC Stormcast For Thursday, August 27th 2020 (oneliner) (0 Comments)
2020-08-26Xavier MertensMalicious Excel Sheet with a NULL VT Score (2 Comments)
2020-08-26Johannes UllrichISC Stormcast For Wednesday, August 26th 2020 (oneliner) (0 Comments)
2020-08-25Xavier MertensKeep An Eye on LOLBins (2 Comments)
2020-08-25Johannes UllrichISC Stormcast For Tuesday, August 25th 2020 (oneliner) (0 Comments)
2020-08-24Xavier MertensTracking A Malware Campaign Through VT (0 Comments)
2020-08-24Johannes UllrichISC Stormcast For Monday, August 24th 2020 (oneliner) (0 Comments)
2020-08-23Didier StevensSmall Challenge: A Simple Word Maldoc - Part 4 (1 Comments)
2020-08-22Guy BruneauRemote Desktop (TCP/3389) and Telnet (TCP/23), What might they have in Common? (0 Comments)
2020-08-22Guy BruneauVMware App Volumes patches address Stored Cross-Site Scripting (XSS) vulnerability - (oneliner) (0 Comments)
2020-08-21Johannes UllrichISC Stormcast For Friday, August 21st 2020 (oneliner) (0 Comments)
2020-08-20Johannes UllrichISC Stormcast For Thursday, August 20th 2020 (oneliner) (0 Comments)
2020-08-20Rob VandenBrinkOffice 365 Mail Forwarding Rules (and other Mail Rules too) (0 Comments)
2020-08-19Xavier MertensExample of Word Document Delivering Qakbot (1 Comments)
2020-08-19Johannes UllrichISC Stormcast For Wednesday, August 19th 2020 (oneliner) (0 Comments)
2020-08-18Johannes UllrichISC Stormcast For Tuesday, August 18th 2020 (oneliner) (0 Comments)
2020-08-18Rick WannerISC Blocked (3 Comments)
2020-08-18Xavier MertensUsing API's to Track Attackers (0 Comments)
2020-08-17Rick WannerPassword Reuse Strikes Again! (0 Comments)
2020-08-17Johannes UllrichISC Stormcast For Monday, August 17th 2020 (oneliner) (0 Comments)
2020-08-16Didier StevensSmall Challenge: A Simple Word Maldoc - Part 3 (4 Comments)
2020-08-15Didier StevensWireshark 3.2.6 Released (0 Comments)
2020-08-14Jan KoprivaDefinition of 'overkill' - using 130 MB executable to hide 24 kB malware (1 Comments)
2020-08-14Johannes UllrichISC Stormcast For Friday, August 14th 2020 (oneliner) (0 Comments)
2020-08-13Johannes UllrichISC Stormcast For Thursday, August 13th 2020 (oneliner) (0 Comments)
2020-08-12Russ McReeWireshark 3.2.6 released, Kafka dissector crash repaired: (oneliner) (0 Comments)
2020-08-12Russ McReeTo the Brim at the Gates of Mordor Pt. 1 (0 Comments)
2020-08-12Johannes UllrichISC Stormcast For Wednesday, August 12th 2020 (oneliner) (0 Comments)
2020-08-11Renato MarinhoMicrosoft August 2020 Patch Tuesday (3 Comments)
2020-08-11Johannes UllrichISC Stormcast For Tuesday, August 11th 2020 (oneliner) (0 Comments)
2020-08-10Bojan ZdrnjaScoping web application and web service penetration tests (0 Comments)
2020-08-10Johannes UllrichISC Stormcast For Monday, August 10th 2020 (oneliner) (0 Comments)
2020-08-09Didier StevensSmall Challenge: A Simple Word Maldoc - Part 2 (1 Comments)
2020-08-08Guy BruneauScanning Activity Include Netcat Listener (0 Comments)
2020-08-07Johannes UllrichISC Stormcast For Friday, August 7th 2020 (oneliner) (0 Comments)
2020-08-07Brad DuncanTA551 (Shathak) Word docs push IcedID (Bokbot) (0 Comments)
2020-08-06Johannes UllrichISC Stormcast For Thursday, August 6th 2020 (oneliner) (0 Comments)
2020-08-06Xavier MertensA Fork of the FTCode Powershell Ransomware (0 Comments)
2020-08-05Johannes UllrichISC Stormcast For Wednesday, August 5th 2020 (oneliner) (0 Comments)
2020-08-05Brad DuncanTraffic Analysis Quiz: What's the Malware From This Infection? (1 Comments)
2020-08-04Johannes UllrichInternet Choke Points: Concentration of Authoritative Name Servers (1 Comments)
2020-08-04Johannes UllrichReminder: Patch Cisco ASA / FTD Devices (CVE-2020-3452). Exploitation Continues (0 Comments)
2020-08-04Johannes UllrichISC Stormcast For Tuesday, August 4th 2020 (oneliner) (0 Comments)
2020-08-03Johannes UllrichA Word of Caution: Helping Out People Being Stalked Online (0 Comments)
2020-08-03Xavier MertensPowershell Bot with Multiple C2 Protocols (0 Comments)
2020-08-03Johannes UllrichISC Stormcast For Monday, August 3rd 2020 (oneliner) (0 Comments)
2020-08-02Didier StevensSmall Challenge: A Simple Word Maldoc (7 Comments)
2020-08-01Jan KoprivaWhat pages do bad bots look for? (3 Comments)