Diaries by Keyword - SANS Internet Storm Center

Participate: Learn more about our honeypot network
https://isc.sans.edu/tools/honeypot/

Handler on Duty: Yee Ching Tok

Threat Level: green

Date	Author	Title
2023-02-05	Didier Stevens	Video: Analyzing Malicious OneNote Documents
2022-10-23	Didier Stevens	Video: PNG Analysis
2022-10-16	Didier Stevens	Video: Analysis of a Malicious HTML File (QBot)
2022-09-18	Didier Stevens	Video: Grep & Tail -f With Notepad++
2022-09-17	Didier Stevens	Video: Analyzing Obfuscated VBS with CyberChef
2022-09-04	Didier Stevens	Video: VBA Maldoc & UTF7 (APT-C-35)
2022-09-03	Didier Stevens	Video: James Webb JPEG With Malware
2022-07-24	Didier Stevens	Video: Maldoc: non-ASCII VBA Identifiers
2022-06-19	Didier Stevens	Video: Decoding Obfuscated BASE64 Statistically
2022-04-17	Didier Stevens	Video: Office Protects You From Malicious ISO Files
2022-04-10	Didier Stevens	Video: Method For String Extraction Filtering
2022-03-27	Didier Stevens	Video: Maldoc Cleaned by Anti-Virus
2022-03-06	Didier Stevens	Video: TShark & Multiple IP Addresses
2022-02-20	Didier Stevens	Video: YARA's Console Module
2021-11-28	Didier Stevens	Video: YARA Rules for Office Maldocs
2021-11-14	Didier Stevens	Video: Obfuscated Maldoc: Reversed BASE64
2021-11-07	Didier Stevens	Video: Decrypting Cobalt Strike Traffic With Keys Extracted From Process Memory
2021-10-31	Didier Stevens	Video: Phishing ZIP With Malformed Filename
2021-10-25	Didier Stevens	Decrypting Cobalt Strike Traffic With a "Leaked" Private Key
2021-10-03	Didier Stevens	Video: CVE-2021-40444 Maldocs: Extracting URLs
2021-09-25	Didier Stevens	Video: Strings Analysis: VBA & Excel4 Maldoc
2021-09-19	Didier Stevens	Video: Simple Analysis Of A CVE-2021-40444 .docx Document
2021-07-18	Didier Stevens	Video: CyberChef BASE85 Decoding
2021-06-20	Didier Stevens	Video: oledump Cheat Sheet
2021-05-30	Didier Stevens	Video: Cobalt Strike & DNS - Part 1
2020-06-27	Didier Stevens	Video: YARA's BASE64 Strings
2019-09-22	Didier Stevens	Video: Encrypted Sextortion PDFs
2019-05-26	Didier Stevens	Video: nmap Service Detection Customization
2019-03-17	Didier Stevens	Video: Maldoc Analysis: Excel 4.0 Macro
2019-02-10	Didier Stevens	Video: Maldoc Analysis of the Weekend
2019-01-26	Didier Stevens	Video: Analyzing Encrypted Malicious Office Documents
2018-12-29	Didier Stevens	Video: De-DOSfuscation Example
2018-11-23	Didier Stevens	Video: Dissecting a CVE-2017-11882 Exploit
2018-11-10	Didier Stevens	Video: CyberChef: BASE64/XOR Recipe
2018-08-19	Didier Stevens	Video: Peeking into msg files - revisited
2018-07-15	Didier Stevens	Video: Retrieving and processing JSON data (BTC example)
2016-12-05	Didier Stevens	Hancitor Maldoc Videos
2016-10-17	Didier Stevens	Maldoc VBA Anti-Analysis: Video
2014-05-23	Richard Porter	Highlights from Cisco Live 2014 - The Internet of Everything
2013-02-04	Adam Swanger	SAN Securing The Human Monthly Awareness Video - Advanced Persistent Threat (APT) http://www.securingthehuman.org/resources/ncsam
2013-01-10	Rob VandenBrink	What Else runs Telnets? Or, Pentesters Love Video Conferencing Units Too!
2012-05-17	Johannes Ullrich	New IPv6 Video: IPv6 Router Advertisements https://isc.sans.edu/ipv6videos
2010-11-17	Guy Bruneau	Cisco Unified Videoconferencing Affected by Multiple Vulnerabilities
2010-10-22	Manuel Humberto Santander Pelaez	Intypedia project
2010-02-02	Johannes Ullrich	New IPv6 Screencast Videos: http://isc.sans.org/ipv6videos (Today: blocking and detecting IPv6 in Linux)