Internet Storm Center
Sign In
Sign Up
Handler on Duty:
Didier Stevens
Threat Level:
green
Date
Author
Title
NAT SLIPSTREAM GUEST DIARY
2020-11-06
Johannes Ullrich
Rediscovering Limitations of Stateful Firewalls: "NAT Slipstreaming" ? Implications, Detections and Mitigations
NAT
2023-01-31/a>
Jesse La Grew
DShield Honeypot Setup with pfSense
2022-05-29/a>
Didier Stevens
Extracting The Overlay Of A PE File
2022-05-28/a>
Didier Stevens
Huge Signed PE File: Keeping The Signature
2022-05-26/a>
Didier Stevens
Huge Signed PE File
2022-03-29/a>
Johannes Ullrich
More Fake/Typosquatting Twitter Accounts Asking for Ukraine Crytocurrency Donations
2022-03-04/a>
Johannes Ullrich
Scam E-Mail Impersonating Red Cross
2020-11-06/a>
Johannes Ullrich
Rediscovering Limitations of Stateful Firewalls: "NAT Slipstreaming" ? Implications, Detections and Mitigations
2020-06-19/a>
Remco Verhoef
Sigma rules! The generic signature format for SIEM systems.
2016-03-07/a>
Xavier Mertens
Another Malicious Document, Another Way to Deliver Malicious Code
2016-02-28/a>
Guy Bruneau
RFC 6598 - Carrier Grade NAT
2015-04-28/a>
Daniel Wesemann
Scammy Nepal earthquake donation requests
2014-11-24/a>
Richard Porter
Someone is using this? PoS: Compressor
2013-05-16/a>
Daniel Wesemann
Extracting signatures from Apple .apps
2012-05-16/a>
Johannes Ullrich
Reserved IP Address Space Reminder
2011-08-17/a>
Rob VandenBrink
Putting all of Your Eggs in One Basket - or How NOT to do Layoffs
2011-06-22/a>
Guy Bruneau
How Good is your Employee Termination Policy?
2010-04-21/a>
Guy Bruneau
McAfee DAT 5958 Update Issues
2009-12-02/a>
Rob VandenBrink
SPAM and Malware taking advantage of H1N1 concerns
2009-02-12/a>
Mark Hofman
Australian Bushfires
2008-06-13/a>
Johannes Ullrich
Floods: More of the same (2)
2008-05-26/a>
Marcus Sachs
Predictable Response
2008-05-17/a>
Jim Clausing
Disaster donation scams continue
SLIPSTREAM
2020-11-06/a>
Johannes Ullrich
Rediscovering Limitations of Stateful Firewalls: "NAT Slipstreaming" ? Implications, Detections and Mitigations
GUEST
2024-06-04/a>
Johannes Ullrich
No-Defender, Yes-Defender
2021-01-05/a>
Johannes Ullrich
Netfox Detective: An Alternative Open-Source Packet Analysis Tool
2020-11-06/a>
Johannes Ullrich
Rediscovering Limitations of Stateful Firewalls: "NAT Slipstreaming" ? Implications, Detections and Mitigations
2019-09-03/a>
Johannes Ullrich
[Guest Diary] Tricky LNK points to TrickBot
2019-08-08/a>
Johannes Ullrich
[Guest Diary] The good, the bad and the non-functional, or "how not to do an attack campaign"
2016-07-27/a>
Xavier Mertens
Critical Xen PV guests vulnerabilities
2013-02-06/a>
Johannes Ullrich
Are you losing system logging information (and don't know it)?
DIARY
2024-06-04/a>
Johannes Ullrich
No-Defender, Yes-Defender
2021-01-05/a>
Johannes Ullrich
Netfox Detective: An Alternative Open-Source Packet Analysis Tool
2020-11-06/a>
Johannes Ullrich
Rediscovering Limitations of Stateful Firewalls: "NAT Slipstreaming" ? Implications, Detections and Mitigations
2019-09-03/a>
Johannes Ullrich
[Guest Diary] Tricky LNK points to TrickBot
2019-08-08/a>
Johannes Ullrich
[Guest Diary] The good, the bad and the non-functional, or "how not to do an attack campaign"
2013-02-06/a>
Johannes Ullrich
Are you losing system logging information (and don't know it)?
2013-01-30/a>
Richard Porter
Getting Involved with the Local Community
Homepage
Diaries
Podcasts
Jobs
Data
TCP/UDP Port Activity
Port Trends
SSH/Telnet Scanning Activity
Weblogs
Threat Feeds Activity
Threat Feeds Map
Useful InfoSec Links
Presentations & Papers
Research Papers
API
Tools
DShield Sensor
DNS Looking Glass
Honeypot (RPi/AWS)
InfoSec Glossary
Contact Us
Contact Us
About Us
Handlers
About Us
Slack Channel
Mastodon
Bluesky
X
Make the web a better place by
sharing the SANS Internet Storm Center
with others