Quantcast
Channel: SANS Internet Storm Center, InfoCON: green
Browsing all 8244 articles
Browse latest View live
↧

OpenSSH 7.1p2 released with security fix for CVE-2016-0777, (Thu, Jan 14th)

:0
:0
January 14, 2016, 9:42 am

2016-01-14:Updated to show">OpenSSHvulnerabilities likeHeartbleed. OpenSSH 7.1p2 has been released with a security fix for a vulnerability recently assigned toCVE-2016-0777 [1]. CVE 2016-0777 is a...

View Article
Search

ISC StormCast for Friday, January 15th 2016...

:0
:0
January 14, 2016, 9:42 am

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC StormCast for Friday, January 15th 2016...

:0
:0
January 14, 2016, 6:23 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

JavaScript Deobfuscation Tool, (Fri, Jan 15th)

:0
:0
January 14, 2016, 11:37 pm

Emails remain a nice way to infect people: Write a messagewith pertinent information, respect the format and style of theorganization youre targeting, add some social engineering and you have good...

View Article

ISC StormCast for Monday, January 18th 2016...

:0
:0
January 17, 2016, 7:47 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Some useful volatility plugins , (Mon, Jan 18th)

:0
:0
January 18, 2016, 9:29 am

In previous diaries I have talked about using volatility, in this diary I will talk about other plugins . 1-MBR parser: mbrparser plugin will scans for and parses potential Master Boot Records (MBRs)...

View Article

ISC StormCast for Tuesday, January 19th 2016...

:0
:0
January 18, 2016, 6:38 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Powershell and HTTPS ? It Ain?t All Rainbows And Lollipops! (or is it?),...

:0
:0
January 19, 2016, 6:12 am

Back in PowerShell school everyone discusses how great Powershell is for Windows functions, and an obligatory part of everyone powershell class is to cover off Invoke-WebRequest, which allows you to...

View Article
Search

ISC StormCast for Wednesday, January 20th 2016...

:0
:0
January 19, 2016, 6:36 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

/tmp, %TEMP%, ~/Desktop, T:\, ... A goldmine for pentesters!, (Wed, Jan 20th)

:0
:0
January 20, 2016, 12:40 am

When you are performing a penetration test, you need to learn how your target is working: What kind of technologies and tools are used, how internal usernames are generated, email addresses format, ......

View Article

ISC StormCast for Thursday, January 21st 2016...

:0
:0
January 20, 2016, 5:36 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Scanning for Fortinet ssh backdoor, (Thu, Jan 21st)

:0
:0
January 21, 2016, 1:13 pm

On 11 Jan, a Python script was posted on the full-disclosure mailing list that took advantage of a hardcoded ssh password in some older versions of various products from Fortinet (see complete list in...

View Article

ISC Stormcast For Friday, January 22nd 2016....

:0
:0
January 21, 2016, 5:49 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

Extracting pcap from memory , (Fri, Jan 22nd)

:0
:0
January 22, 2016, 7:26 am

I have talked many times about memory forensics and how useful its. In this diary I am going to talk about how to extract a pcap file from a memory image using bulk_extractor. Of course when we are...

View Article

Sigcheck and VirusTotal for Offline Machine, (Sat, Jan 23rd)

:0
:0
January 23, 2016, 8:50 am

In a diary entry I showed a great new feature of Sysinternals" /> This example is for one file. But of course, sigcheck can check many files if you point it to a folder and use option -s to recurse....

View Article
Search
Image may be NSFW.
Clik here to view.

Obfuscated MIME Files, (Sun, Jan 24th)

:0
:0
January 24, 2016, 3:07 am

As could be expected, the race to obfuscate MS Office documents stored as MIME files to bypass detection, would not stop with a simple extra line. I was given a sample where the first two lines are not...

View Article

Assessing Remote Certificates with Powershell, (Mon, Jan 25th)

:0
:0
January 24, 2016, 5:01 pm

Building on our last conversation about HTTPS and Powershell, lets look at another common thing youd do with HTTPS in a system administrator, or in a security assessment or penetration test lets assess...

View Article

Cuckoo Sandbox 2.0 RC1 released...

:0
:0
January 24, 2016, 7:23 pm

=============== Rob VandenBrink Metafore (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC Stormcast For Monday, January 25th 2016...

:0
:0
January 24, 2016, 7:47 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article

ISC Stormcast For Tuesday, January 26th 2016...

:0
:0
January 25, 2016, 6:11 pm

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.

View Article
Browsing all 8244 articles
Browse latest View live
Search