Internet Storm Center
Sign In
Sign Up
SANS Network Security: Las Vegas Sept 4-9.
Handler on Duty:
Didier Stevens
Threat Level:
green
Date
Author
Title
2024-03-28
Xavier Mertens
From JavaScript to AsyncRAT
2024-02-21
Jan Kopriva
Phishing pages hosted on archive.org
2023-11-17
Jan Kopriva
Phishing page with trivial anti-analysis features
2023-05-20
Xavier Mertens
Phishing Kit Collecting Victim's IP Address
2022-06-16
Xavier Mertens
Houdini is Back Delivered Through a JavaScript Dropper
2022-06-01
Jan Kopriva
HTML phishing attachments - now with anti-analysis features
2022-01-18
Jan Kopriva
Phishing e-mail with...an advertisement?
2021-11-18
Xavier Mertens
JavaScript Downloader Delivers Agent Tesla Trojan
2021-10-21
Brad Duncan
"Stolen Images Evidence" campaign pushes Sliver-based malware
2021-05-22
Xavier Mertens
"Serverless" Phishing Campaign
2021-05-18
Xavier Mertens
From RunDLL32 to JavaScript then PowerShell
2021-04-28
Xavier Mertens
Deeper Analyzis of my Last Malicious PowerPoint Add-On
2020-11-13
Xavier Mertens
Old Worm But New Obfuscation Technique
2020-07-24
Xavier Mertens
Compromized Desktop Applications by Web Technologies
2020-06-11
Xavier Mertens
Anti-Debugging JavaScript Techniques
2020-03-27
Xavier Mertens
Malicious JavaScript Dropping Payload in the Registry
2019-08-09
Xavier Mertens
100% JavaScript Phishing Page
2019-06-10
Xavier Mertens
Interesting JavaScript Obfuscation Example
2019-02-07
Xavier Mertens
Phishing Kit with JavaScript Keylogger
2018-07-13
Xavier Mertens
Cryptominer Delivered Though Compromized JavaScript File
2018-06-18
Xavier Mertens
Malicious JavaScript Targeting Mobile Browsers
2017-06-22
Xavier Mertens
Obfuscating without XOR
2017-03-24
Xavier Mertens
Nicely Obfuscated JavaScript Sample
2017-03-04
Xavier Mertens
How your pictures may affect your website reputation
2017-02-12
Xavier Mertens
Analysis of a Suspicious Piece of JavaScript
2016-08-28
Guy Bruneau
Spam with Obfuscated Javascript
2016-06-18
Rob VandenBrink
Controlling JavaScript Malware Before it Runs
2016-02-20
Didier Stevens
Locky: JavaScript Deobfuscation
2016-02-07
Xavier Mertens
More Malicious JavaScript Obfuscation
2016-01-15
Xavier Mertens
JavaScript Deobfuscation Tool
2015-08-07
Tony Carothers
Critical Firefox Update Today
2014-08-29
Johannes Ullrich
False Positive or Not? Difficult to Analyze Javascript
2014-07-02
Johannes Ullrich
Simple Javascript Extortion Scheme Advertised via Bing
2013-08-07
Johannes Ullrich
Firefox 23 and Mixed Active Content
2013-04-23
Russ McRee
Microsoft's Security Intelligence Report (SIRv14) released
2013-02-08
Kevin Shortt
Is it Spam or Is it Malware?
2012-06-25
Guy Bruneau
Using JSDetox to Analyze and Deobfuscate Javascript
2012-05-22
Johannes Ullrich
nmap 6 released
2012-04-25
Daniel Wesemann
Blacole's obfuscated JavaScript
2012-01-22
Johannes Ullrich
Javascript DDoS Tool Analysis
2012-01-03
Bojan Zdrnja
The tale of obfuscated JavaScript continues
2011-12-07
Lenny Zeltser
V8 as an Alternative to SpiderMonkey for JavaScript Deobfuscation
2011-06-06
Manuel Humberto Santander Pelaez
Phishing: Same goal, same techniques and people still falling for such scams
2011-04-23
Manuel Humberto Santander Pelaez
Image search can lead to malware download
2010-12-02
Kevin Johnson
Robert Hansen and our happiness
2010-07-04
Manuel Humberto Santander Pelaez
Malware inside PDF Files
2010-03-05
Kyle Haugsness
Javascript obfuscators used in the wild
2009-05-04
Tom Liston
Adobe Reader/Acrobat Critical Vulnerability
2009-04-07
Bojan Zdrnja
Advanced JavaScript obfuscation (or why signature scanning is a failure)
2009-04-02
Bojan Zdrnja
JavaScript insertion and log deletion attack tools
2009-02-25
Andre Ludwig
Adobe Acrobat pdf 0-day exploit, No JavaScript needed!
2008-07-14
Daniel Wesemann
Obfuscated JavaScript Redux
2008-06-30
Marcus Sachs
More SQL Injection with Fast Flux hosting
2008-05-20
Raul Siles
List of malicious domains inserted through SQL injection
2008-04-06
Daniel Wesemann
Advanced obfuscated JavaScript analysis
2008-04-03
Bojan Zdrnja
Mixed (VBScript and JavaScript) obfuscation
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Contact Us
Contact Us
About Us
Handlers
About Us
Slack Channel
Mastodon
Bluesky
X
Follow the Internet Storm Center on
Twitter