Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Diaries by Keyword Diaries by Keyword

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Date Author Title
2021-07-03Didier StevensFinding Strings With oledump.py
2021-06-28Didier StevensCFBF Files Strings Analysis
2021-06-20Didier StevensVideo: oledump Cheat Sheet
2020-12-06Didier Stevensoledump's Indicators (video)
2020-11-15Didier Stevensoledump's ! Indicator
2020-11-08Didier StevensQuick Tip: Extracting all VBA Code from a Maldoc
2020-10-11Didier StevensAnalyzing MSG Files With plugin_msg_summary
2020-02-16Guy BruneauSOAR or not to SOAR?
2019-12-23Didier StevensNew oledump.py plugin: plugin_version_vba
2019-08-14Brad DuncanRecent example of MedusaHTTP malware
2019-05-10Xavier MertensDSSuite - A Docker Container with Didier's Tools
2018-05-07Xavier MertensAdding Persistence Via Scheduled Tasks
2016-08-19Xavier MertensData Classification For the Masses
2015-07-12Didier StevensJump List Files Are OLE Files
2015-02-19Daniel WesemannMacros? Really?!
2014-07-05Guy BruneauMalware Analysis with pedump
2013-02-19Johannes UllrichEDUCAUSE Breach
2012-07-14Tony CarothersUser Awareness and Education
2012-07-02Dan GoldbergStorms of June 29th 2012 in Mid Atlantic region of the USA
2010-11-01Manuel Humberto Santander PelaezCheckpoint UTM-1 edge VPN boxes worldwide did an unscheduled reboot
2010-05-07Rob VandenBrinkSecurity Awareness – Many Audiences, Many Messages (Part 2)
2010-02-28Mari NicholsDisasters take practice
2010-01-23Lorna HutchesonThe necessary evils: Policies, Processes and Procedures
2009-12-19Deborah HaleEducationing Our Communities
2009-11-13Deborah HaleIt's Never Too Early To Start Teaching Them
2008-09-07Daniel WesemannStaying current, but not too current
2008-08-03Deborah HaleSecuring A Network - Lessons Learned