Threat Level: green Handler on Duty: Yee Ching Tok

SANS ISC: Diary Discussions - SANS Internet Storm Center SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Diary Discussions
Title Replies Views Latest Reply
Some Honeypot Updates
May 3rd 2022
3 weeks ago by Johannes
0 0 No replies yet.
Detecting VSTO Office Files With ExifTool
May 2nd 2022
3 weeks ago by DidierStevens
0 0 No replies yet.
YARA 4.2.1 Released
Apr 30th 2022
3 weeks ago by DidierStevens
0 0 No replies yet.
Using Passive DNS sources for Reconnaissance and Enumeration
Apr 29th 2022
3 weeks ago by Rob VandenBrink
1 0 Apr 29th 2022
3 weeks ago
by Rob VandenBrink
A Day of SMB: What does our SMB/RPC Honeypot see? CVE-2022-26809
Apr 28th 2022
3 weeks ago by Johannes
0 0 No replies yet.
MITRE ATT&CK v11 - a small update that can help (not just) with detection engineering
Apr 27th 2022
3 weeks ago by Jan
0 0 No replies yet.
WSO2 RCE exploited in the wild
Apr 26th 2022
4 weeks ago by Renato
0 0 No replies yet.
Simple PDF Linking to Malicious Content
Apr 25th 2022
4 weeks ago by Xme
0 0 No replies yet.
Analyzing a Phishing Word Document
Apr 24th 2022
1 month ago by DidierStevens
0 0 No replies yet.
Are Roku Streaming Devices Safe from Exploitation?
Apr 23rd 2022
1 month ago by Guy
1 0 Apr 24th 2022
1 month ago
by Sam
Multi-Cryptocurrency Clipboard Swapper
Apr 21st 2022
1 month ago by Xme
0 0 No replies yet.
"aa" distribution Qakbot (Qbot) infection with DarkVNC traffic
Apr 20th 2022
1 month ago by Brad
1 0 Apr 20th 2022
1 month ago
by Anonymous
Office Protects You From Malicious ISO Files
Apr 16th 2022
1 month ago by DidierStevens
0 0 No replies yet.
Resetting Linux Passwords with U-Boot Bootloaders
Apr 19th 2022
1 month ago by Johannes
0 0 No replies yet.
Sysmon's RegistryEvent (Value Set)
Apr 18th 2022
1 month ago by DidierStevens
0 0 No replies yet.
Video: Office Protects You From Malicious ISO Files
Apr 17th 2022
1 month ago by DidierStevens
0 0 No replies yet.
An Update on CVE-2022-26809 - MSRPC Vulnerabliity - PATCH NOW
Apr 14th 2022
1 month ago by Johannes
2 0 Apr 15th 2022
1 month ago
by otmar
Microsoft April 2022 Patch Tuesday
Apr 12th 2022
1 month ago by Renato
0 0 No replies yet.
How is Ukrainian internet holding up during the Russian invasion?
Apr 13th 2022
1 month ago by Jan
0 0 No replies yet.
Spring: It isn't just about Spring4Shell. Spring Cloud Function Vulnerabilities are being probed too.
Apr 11th 2022
1 month ago by Johannes
0 0 No replies yet.