SANS Daily Network Security Podcast (Stormcast) for Friday, November 4th 2016

Reconstruct Binaries Sent via Telnet; Wix.com DOM Based XSS; WoT Leaked/Sold User Data

If you are not able to play the podcast using the player below: Use this direct link to the audio file: https://traffic.libsyn.com/securitypodcast/5239.mp3

00:00

See us at SANSFIRE in Washington DC, July 11th-16th. Handler talks, Internet Storm Center Keynote, Honeypot Workshop following the keynote. Click here for details.

My Next Class

Application Security: Securing Web Apps, APIs, and Microservices	Tokyo	Aug 29th - Sep 3rd 2022
Application Security: Securing Web Apps, APIs, and Microservices	Online \| Japan Standard Time	Aug 29th - Sep 3rd 2022

… more classes

Help us make this podcast better by participating in a simple two question survey

Reconstruct Binaries Sent via Telnet
https://isc.sans.edu/forums/diary/Extracting+Malware+Transmitted+Via+Telnet/21673/

Wix.com DOM Based XSS
https://www.contrastsecurity.com/security-influencers/dom-xss-in-wix.com

DNS Based Mail Security
https://nccoe.nist.gov/projects/building_blocks/secured_email

Web of Trust Plugin Released Anonymized User Data
https://www.mywot.com/en/forum/70396--virus-spyware-do-not-install-uninstall-as-soon-as-possible

iTunes

MP3 Download

RSS Feed

Google

Stitcher

Podbean

Amazon Echo

YouTube

Spreaker

iOS App

Spotify

Discussion

I'm curious on the Malware/Telnet diary...mostly on how do you effectively use Snort? I am using the Cisco FirePower NGIPS which is my first experience with any Snort/SourceFire product. I'm finding it to pale in comparison to other IPS/IDS products for ease of use...how do you use Snort (and are you using a freeware download or the paid Cisco FirePower prodcut) ?

-Matt

Posted by Matt on Fri Nov 04 2016, 12:20

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Top of page

Application Security: Securing Web Apps, APIs, and Microservices	Tokyo	Aug 29th - Sep 3rd 2022
Application Security: Securing Web Apps, APIs, and Microservices	Online \| Japan Standard Time	Aug 29th - Sep 3rd 2022
Intrusion Detection In-Depth	Riyadh	Oct 8th - Oct 13th 2022
Intrusion Detection In-Depth	Online \| Arabian Standard Time	Oct 8th - Oct 13th 2022
Application Security: Securing Web Apps, APIs, and Microservices	San Francisco	Dec 5th - Dec 10th 2022
Application Security: Securing Web Apps, APIs, and Microservices	Online \| US Pacific	Dec 5th - Dec 10th 2022
Intrusion Detection In-Depth	Online \| Central European Time	Jan 30th - Feb 4th 2023