Coming up next: Microsoft Patch Tuesday, (Fri, Aug 8th)
Microsoft will publish 9 bulletins next patch tuesday, with 7 important and 2 critical bulletins. More information at https://technet.microsoft.com/library/security/ms14-aug Manuel Humberto Santander...
View ArticleMicrosoft & IE support plans, best be on IE11 by 01/2016, (Sat, Aug 9th)
Microsoft announced in their blog on the 8th (thanks Allan for the heads up) that starting January 2016 the browsers that will be supported are: Vista SP2 - IE9 2008 SP2 - IE9 Windows 7 - IE11...
View ArticleClik here to view.
Complete application ownage via Multi-POST XSRF, (Sat, Aug 9th)
I enjoy performing penetration tests, I also enjoy teaching how to do penetration testing correctly. Next time up is SANS Sec560 network penetration testing in Albuquerque, NM. When I am teaching one...
View ArticleClik here to view.
Incident Response with Triage-ir, (Sun, Aug 10th)
In many cases having a full disk image is not an option during an incident. Imagine that you are suspecting that you have dozen of infected or compromised system. Can you spend 2-3 hours to make a...
View ArticleISC StormCast for Monday, August 11th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleVerifying preferred SSL/TLS ciphers with Nmap, (Mon, Aug 11th)
In last year or two, there has been a lot of talk regarding correct usage of SSL/TLS ciphers on web servers. Due to various incidents more or less known incidents, web sites today should use PFS...
View ArticleISC StormCast for Tuesday, August 12th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSysinternals updates Sysmon v1.0; Updates: Autoruns v12.01, Coreinfo v3.3,...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleHost discovery with nmap, (Tue, Aug 12th)
I enjoy performing penetration tests, I also enjoy teaching how to do penetration testing correctly. Next time up is SANS Sec560 network penetration testing in Albuquerque, NM. When I am teaching one...
View ArticleAdobe updates for 2014/08, (Tue, Aug 12th)
Adobe has released security updates for Adobe Flash Player, Adobe AIR, Adobe Reader, and Acrobat. The updates are rated as critical and an impressive number of CVE entries.  CVE-2014-0538,...
View ArticleMicrosoft Patch Tuesday - August 2014, (Tue, Aug 12th)
Overview of the August 2014 Microsoft patches and their status. # Affected Contra Indications - KB Known Exploits Microsoft rating(**) ISC rating(*) clients servers MS14-043 Vulnerability in Windows...
View ArticleISC StormCast for Wednesday, August 13th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleSomething is amiss with the Interwebs! BGP is a flapping. , (Tue, Aug 12th)
[Update] See http://www.bgpmon.net/what-caused-todays-internet-hiccup/ for a good summary of what happened.  Tuesday Morning, various networks experienced outages from 4-6am EDT (8-10am UTC) [1]. I...
View ArticleUpdates for Apple Safari, (Wed, Aug 13th)
Apple today released updates for Safari 6.x and 7.x . The patches fix 7 vulnerabilities and are available for versions of OS X back to 10.7.5 (Lion). [1] The bulletin released by Apple is very vague...
View ArticleISC StormCast for Thursday, August 14th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleThreats to virtual environments, (Thu, Aug 14th)
In the past few years the virtualization concept becomes very popular. A new study by Symantec [1] discussed the threats to the virtual environment and suggests the best practice to minimize the risk....
View ArticlePHP 5.3.29 is available, PHP 5.3 reaching end of life, (Thu, Aug 14th)
The PHP development team announces the immediate availability of PHP 5.3.29. This release marks the end of life of the PHP 5.3 series. Future releases of this series are not planned. All PHP 5.3 users...
View ArticleAppLocker Event Logs with OSSEC 2.8, (Fri, Aug 15th)
In a previous post, Monitoring Windows Networks Using Syslog, I discussed using syslog to send the event logs to a SIEM.  This post covers another technique for collecting event log data for...
View ArticleISC StormCast for Friday, August 15th 2014...
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
View ArticleIssues with Microsoft Updates, (Sat, Aug 16th)
Microsoft has updated some bulletins because there are three known issues that can affect your computer. when KB2982791 is installed, fonts that are installed in a location other than the default fonts...
View Article