Diaries by Keyword - SANS Internet Storm Center

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Handler on Duty: Johannes Ullrich

Threat Level: green

Date	Author	Title
2022-06-23	Xavier Mertens	FLOSS 2.0 Has Been Released
2022-04-10	Didier Stevens	Video: Method For String Extraction Filtering
2022-04-09	Didier Stevens	Method For String Extraction Filtering
2021-11-25	Didier Stevens	YARA's Private Strings
2021-09-25	Didier Stevens	Strings Analysis: VBA & Excel4 Maldoc
2021-09-25	Didier Stevens	Video: Strings Analysis: VBA & Excel4 Maldoc
2021-07-03	Didier Stevens	Finding Strings With oledump.py
2021-06-28	Didier Stevens	CFBF Files Strings Analysis
2021-01-10	Didier Stevens	Maldoc Analysis With CyberChef
2021-01-09	Didier Stevens	Maldoc Strings Analysis
2021-01-01	Didier Stevens	Strings 2021
2020-10-25	Didier Stevens	Video: Pascal Strings
2020-06-01	Jim Clausing	Stackstrings, type 2
2020-05-22	Didier Stevens	Some Strings to Remember
2020-05-21	Xavier Mertens	Malware Triage with FLOSS: API Calls Based Behavior
2020-04-27	Xavier Mertens	Powershell Payload Stored in a PSCredential Object
2018-12-09	Didier Stevens	Quickie: String Analysis is Still Useful
2018-01-01	Didier Stevens	What is new?
2014-04-05	Jim Clausing	Those strange e-mails with URLs in them can lead to Android malware
2013-06-21	Guy Bruneau	Sysinternals Updates for Autoruns, Strings & ZoomIt http://blogs.technet.com/b/sysinternals/archive/2013/06/20/updates-autoruns-v11-61-strings-v2-52-zoomit-v4-5.aspx
2013-05-20	Guy Bruneau	Sysinternals Updates for Accesschk, Procdump, RAMMap and Strings http://blogs.technet.com/b/sysinternals/archive/2013/05/17/updates-accesschk-v5-11-procdump-v6-0-rammap-v1-22-strings-v2-51.aspx
2013-01-15	Rob VandenBrink	When Disabling IE6 (or Java, or whatever) is not an Option...
2007-01-03	Toby Kohlenberg	VLC Media Player udp URL handler Format String Vulnerability