Diaries by Keyword - SANS Internet Storm Center

Participate: Learn more about our honeypot network
https://isc.sans.edu/tools/honeypot/

Handler on Duty: Yee Ching Tok

Threat Level: green

Date	Author	Title
JSON FILTER
2021-08-29	Guy Bruneau	Filter JSON Data by Value with Linux jq
JSON
2023-01-21/a>	Guy Bruneau	DShield Sensor JSON Log to Elasticsearch
2023-01-08/a>	Guy Bruneau	DShield Sensor JSON Log Analysis
2022-12-28/a>	Rob VandenBrink	Playing with Powershell and JSON (and Amazon and Firewalls)
2022-08-08/a>	Johannes Ullrich	JSON All the Logs!
2022-04-03/a>	Didier Stevens	jo
2022-04-02/a>	Didier Stevens	curl 7.82.0 Adds --json Option
2021-12-10/a>	Xavier Mertens	Python Shellcode Injection From JSON Data
2021-08-29/a>	Guy Bruneau	Filter JSON Data by Value with Linux jq
2020-11-22/a>	Didier Stevens	Quick Tip: Extracting all VBA Code from a Maldoc - JSON Format
2018-07-15/a>	Didier Stevens	Video: Retrieving and processing JSON data (BTC example)
2018-07-14/a>	Didier Stevens	Retrieving and processing JSON data (BTC example)
2017-11-13/a>	Guy Bruneau	jsonrpc Scanning for root account
FILTER
2021-08-29/a>	Guy Bruneau	Filter JSON Data by Value with Linux jq
2020-07-23/a>	Xavier Mertens	Simple Blocklisting with MISP & pfSense
2019-11-22/a>	Xavier Mertens	Abusing Web Filters Misconfiguration for Reconnaissance
2019-09-19/a>	Xavier Mertens	Blocklisting or Whitelisting in the Right Way
2017-10-24/a>	Xavier Mertens	Stop relying on file extensions
2017-03-10/a>	Xavier Mertens	The Side Effect of GeoIP Filters
2017-03-08/a>	Richard Porter	What is really being proxied?
2014-07-11/a>	Rob VandenBrink	Egress Filtering? What - do we have a bird problem?
2010-03-17/a>	Deborah Hale	Spam was killing us! Here is what we did to help!
2010-02-22/a>	Rob VandenBrink	New Risks in Penetration Testing

JSON FILTER

JSON

FILTER