Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Diaries by Keyword Diaries by Keyword

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title

FTP BRUTE PASSWORD GUESSING

2010-08-27Mark HofmanFTP Brute Password guessing attacks

FTP

2019-01-02/a>Xavier MertensMalicious Script Leaking Data via FTP
2010-12-02/a>Kevin JohnsonProFTPD distribution servers compromised
2010-08-27/a>Mark HofmanFTP Brute Password guessing attacks
2009-10-04/a>Guy BruneauCyber Security Awareness Month - Day 4 - Port 20/21 - FTP-data/FTP
2009-09-04/a>Adrien de BeaupreVulnerabilities (plural) in MS IIS FTP Service 5.0, 5.1. 6.0, 7.0
2009-02-11/a>Robert DanfordProFTPd SQL Authentication Vulnerability exploit activity
2008-06-01/a>Mark HofmanFree Yahoo email account! Sign me up, Ok well maybe not.

BRUTE

2018-01-09/a>Jim ClausingAre you watching for brute force attacks on IPv6?
2017-08-07/a>Xavier MertensIncrease of phpMyAdmin scans
2017-04-26/a>Johannes UllrichIf there are some unexploited MSSQL Servers With Weak Passwords Left: They got you now (again)
2015-06-23/a>Kevin ShorttXOR DDOS Mitigation and Analysis
2015-06-22/a>Johannes UllrichSMTP Brute Forcing
2014-09-07/a>Johannes UllrichOdd Persistent Password Bruteforcing
2014-07-23/a>Johannes UllrichNew Feature: "Live" SSH Brute Force Logs and New Kippo Client
2014-07-22/a>Daniel Wesemann WordPress brute force attack via wp.getUsersBlogs
2013-12-02/a>Richard PorterReports of higher than normal SSH Attacks
2013-07-31/a>Johannes UllrichPOP3 Server Brute Forcing Attempts Using Polycom Credentials
2013-06-23/a>Kevin ListonIs SSH no more secure than telnet?
2012-12-16/a>Tony CarothersSSH Brute Force on Non-Standard Ports
2011-12-04/a>Guy BruneauSSH Password Brute Forcing may be on the Rise
2011-11-06/a>Tom ListonNew, odd SSH brute force behavior
2011-08-02/a>Mark HofmanSSH Brute Force attacks
2011-07-31/a>Daniel WesemannAnatomy of a Unix breach
2011-07-17/a>Mark HofmanSSH Brute Force
2010-09-07/a>Bojan ZdrnjaSSH password authentication insight and analysis by DRG
2010-08-27/a>Mark HofmanFTP Brute Password guessing attacks
2010-06-18/a>Adrien de BeaupreDistributed SSH Brute Force Attempts on the rise again
2010-06-18/a>Tom ListonIMPORTANT INFORMATION: Distributed SSH Brute Force Attacks
2010-01-01/a>G. N. WhiteDealing With Unwanted SSH Bruteforcing
2009-11-30/a>Bojan ZdrnjaDistributed Wordpress admin account cracking
2009-04-17/a>Daniel WesemannGuess what? SSH again!
2009-03-30/a>Daniel WesemannWatch your Internet routers!
2009-01-30/a>Mark HofmanRequest for info - Scan and webmail
2008-10-02/a>Kyle HaugsnessLow, slow, distributed SSH username brute forcing
2008-06-09/a>Scott FendleySo Where Are Those OpenSSH Key-based Attacks?
2008-05-12/a>Scott FendleyBrute-force SSH Attacks on the Rise

PASSWORD

2020-07-26/a>Didier StevensCracking Maldoc VBA Project Passwords
2020-07-13/a>Didier StevensVBA Project Passwords
2020-06-10/a>Brad DuncanJob application-themed malspam pushes ZLoader
2020-04-06/a>Didier StevensPassword Protected Malicious Excel Files
2019-11-01/a>Didier StevensTip: Password Managers and 2FA
2018-12-17/a>Didier StevensPassword Protected ZIP with Maldoc
2018-08-22/a>Deborah HaleEmail/password Frustration
2018-07-12/a>Johannes UllrichNew Extortion Tricks: Now Including Your Password!
2017-11-28/a>Xavier MertensApple High Sierra Uses a Passwordless Root Account
2017-05-17/a>Richard PorterWait What? We don?t have to change passwords every 90 days?
2017-04-26/a>Johannes UllrichIf there are some unexploited MSSQL Servers With Weak Passwords Left: They got you now (again)
2017-04-10/a>Didier StevensPassword History: Insights Shared by a Reader
2017-02-07/a>Johannes UllrichMy Password is [taco] Using Emojis for Stronger Passwords
2016-12-07/a>Xavier MertensThe Passwords You Should Never Use
2016-09-15/a>Xavier MertensIn Need of a OTP Manager Soon?
2016-07-21/a>Didier StevensPractice ntds.dit File
2016-06-20/a>Xavier MertensUsing Your Password Manager to Monitor Data Leaks
2015-06-26/a>Daniel WesemannCisco default credentials - again!
2014-09-19/a>Guy BruneauAdded today in oclhashcat 131 Django [Default Auth] (PBKDF2 SHA256 Rounds Salt) Support - http://hashcat.net/hashcat/
2014-08-22/a>Richard PorterOCLHashCat 1.30 Released
2014-08-06/a>Johannes UllrichAll Passwords have been lost: What's next?
2014-05-22/a>Rob VandenBrinkAnother Site Breached - Time to Change your Passwords! (If you can that is)
2013-11-22/a>Rick WannerTales of Password Reuse
2013-07-21/a>Guy BruneauUbuntu Forums Security Breach
2013-06-11/a>Swa FrantzenStore passwords the right way in your application
2013-05-14/a>Jim ClausingSo what passwords are those ssh scanners trying?
2013-03-18/a>Kevin ShorttCisco IOS Type 4 Password Issue: http://tools.cisco.com/security/center/content/CiscoSecurityResponse/cisco-sr-20130318-type4
2013-01-18/a>Russ McReeInteresting reads for Friday 18 JAN 2013
2013-01-04/a>Daniel WesemannBlue for Reset?
2012-11-15/a>Jim ClausingAnother month another password disclosure breach
2012-07-16/a>Jim ClausingAn analysis of the Yahoo! passwords
2012-06-06/a>Jim ClausingPotential leak of 6.5+ million LinkedIn password hashes
2012-05-22/a>Johannes Ullrichnmap 6 released
2012-01-03/a>Rick WannerAnalysis of the Stratfor Password List
2011-10-10/a>Tom ListonWhat's In A Name?
2011-08-10/a>Johannes UllrichTheoretical and Practical Password Entropy
2011-06-28/a>Johannes UllrichHashing Passwords
2011-05-30/a>Johannes UllrichAllied Telesis Passwords Leaked
2010-12-28/a>John BambenekMozilla Notifies of Relatively Minor Security Breach
2010-12-15/a>Manuel Humberto Santander PelaezHP StorageWorks P2000 G3 MSA hardcoded user
2010-12-13/a>Deborah HaleGawker Media Breach of Security
2010-11-26/a>Mark HofmanUsing password cracking as metric/indicator for the organisation's security posture
2010-08-27/a>Mark HofmanFTP Brute Password guessing attacks
2010-02-25/a>Chris CarboniPass The Hash
2010-02-02/a>Johannes UllrichTwitter Mass Password Reset due to Phishing
2009-12-04/a>Daniel WesemannThe economics of security advice (MSFT research paper)
2009-11-02/a>Daniel WesemannPassword rules: Change them every 25 years
2009-10-23/a>Johannes UllrichLittle new tool: reversing md5/sha1 hashes http://isc.sans.org/tools/reversehash.html
2008-09-22/a>Jim ClausingLessons learned from the Palin (and other) account hijacks

GUESSING

2010-08-27/a>Mark HofmanFTP Brute Password guessing attacks