Date Author Title
2023-04-27Johannes UllrichSANS.edu Research Journal: Volume 3
2023-03-29Didier StevensExtracting Multiple Streams From OLE Files
2023-03-07Johannes UllrichHackers Love This VSCode Extension: What You Can Do to Stay Safe
2023-02-26Didier Stevensoledump & MSI Files
2022-07-24Didier StevensVideo: Maldoc: non-ASCII VBA Identifiers
2022-07-21Didier StevensMaldoc: non-ASCII VBA Identifiers
2022-06-15Johannes UllrichTerraforming Honeypots. Installing DShield Sensors in the Cloud
2022-06-02Johannes UllrichQuick Answers in Incident Response: RECmd.exe
2022-05-14Didier StevensQuick Analysis Of Phishing MSG
2022-03-05Didier Stevensoledump's Extra Option
2021-07-03Didier StevensFinding Strings With oledump.py
2021-06-28Didier StevensCFBF Files Strings Analysis
2021-06-20Didier StevensVideo: oledump Cheat Sheet
2020-12-06Didier Stevensoledump's Indicators (video)
2020-11-15Didier Stevensoledump's ! Indicator
2020-11-08Didier StevensQuick Tip: Extracting all VBA Code from a Maldoc
2020-10-11Didier StevensAnalyzing MSG Files With plugin_msg_summary
2020-02-16Guy BruneauSOAR or not to SOAR?
2019-12-23Didier StevensNew oledump.py plugin: plugin_version_vba
2019-08-14Brad DuncanRecent example of MedusaHTTP malware
2019-05-10Xavier MertensDSSuite - A Docker Container with Didier's Tools
2018-05-07Xavier MertensAdding Persistence Via Scheduled Tasks
2016-08-19Xavier MertensData Classification For the Masses
2015-07-12Didier StevensJump List Files Are OLE Files
2015-02-19Daniel WesemannMacros? Really?!
2014-07-05Guy BruneauMalware Analysis with pedump
2013-02-19Johannes UllrichEDUCAUSE Breach
2012-07-14Tony CarothersUser Awareness and Education
2012-07-02Dan GoldbergStorms of June 29th 2012 in Mid Atlantic region of the USA
2010-11-01Manuel Humberto Santander PelaezCheckpoint UTM-1 edge VPN boxes worldwide did an unscheduled reboot
2010-05-07Rob VandenBrinkSecurity Awareness – Many Audiences, Many Messages (Part 2)
2010-02-28Mari NicholsDisasters take practice
2010-01-23Lorna HutchesonThe necessary evils: Policies, Processes and Procedures
2009-12-19Deborah HaleEducationing Our Communities
2009-11-13Deborah HaleIt's Never Too Early To Start Teaching Them
2008-09-07Daniel WesemannStaying current, but not too current
2008-08-03Deborah HaleSecuring A Network - Lessons Learned