Threat Level: green Handler on Duty: Lorna Hutcheson

SANS ISC: Post Exploit Script; Zip Slip Vulnerability; Redis Exploits; Drupalgeddon 2 Update - SANS Internet Storm Center Post Exploit Script; Zip Slip Vulnerability; Redis Exploits; Drupalgeddon 2 Update


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
podcast logo

ISC StormCast for Wednesday, June 6th 2018

A daily summary of cyber security news from the SANS Internet Stormcenter
Author:Johannes B. Ullrich, Ph.D.
See below for a schedule of classes I teach.
Created: Wednesday, June 6th 2018
Length: 5:41 minutes
Today's Headline: Post Exploit Script; Zip Slip Vulnerability; Redis Exploits; Drupalgeddon 2 Update

If you like this podcast, then please consider telling others about it. Use this button to Tweet about this episode: click here. Errors? Corrections? Complaints? Player Problems? Please let us know here: https://isc.sans.edu/contact.html

Plain HTML5 Player
Fancy Player (with skip back/forward)

Show Notes

Analysis of a Post Exploit Script
Malicious Post-Exploitation Batch File

Zip Slip Vulnerability
https://snyk.io/research/zip-slip-vulnerability

Redis Exploits
https://www.incapsula.com/blog/report-75-of-open-redis-servers-are-infected.html

Drupalgeddon 2 Update
https://badpackets.net/over-100000-drupal-websites-vulnerable-to-drupalgeddon-2-cve-2018-7600/


Discussion

Link is missing for the first item: https://isc.sans.edu/diary/Malicious+PostExploitation+Batch+File/23735/
Posted by gebhard on Wed Jun 06 2018, 04:55

New Discussions closed for all Podcasts older than two(2) weeks
Please send your comments to our Contact Form

Interested in attending one of my classes? See below for my current schedule.

Intrusion Detection In-DepthSan AntonioAug 6th - Aug 11th 2018
Defending Web Applications Security EssentialsAmsterdamSep 3rd - Sep 8th 2018
Defending Web Applications Security EssentialsLas VegasSep 23rd - Sep 28th 2018