SANS Internet Storm Center, InfoCON: green

ISC Stormcast For Thursday, September 19th, 2024 https://isc.sans.edu/podcastdetail/9144, (Thu, Sep 19th)

about 15 hours ago

Time-to-Live Analysis of DShield Data with Vega-Lite, (Wed, Sep 18th)

about 17 hours ago

Since posting a diary about Vega-Lite [1], I have "played" with other...

Python Infostealer Patching Windows Exodus App, (Wed, Sep 18th)

1 day ago

A few months ago, I wrote a diary[1] about a Python script...

ISC Stormcast For Wednesday, September 18th, 2024 https://isc.sans.edu/podcastdetail/9142, (Wed, Sep 18th)

1 day ago

23:59, Time to Exfiltrate!, (Tue, Sep 17th)

2 days ago

Last week, I posted a diary about suspicious Python modules. One of...

ISC Stormcast For Tuesday, September 17th, 2024 https://isc.sans.edu/podcastdetail/9140, (Tue, Sep 17th)

3 days ago

Managing PE Files With Overlays, (Mon, Sep 16th)

3 days ago

There is a common technique used by attackers: They append some data...

ISC Stormcast For Monday, September 16th, 2024 https://isc.sans.edu/podcastdetail/9138, (Mon, Sep 16th)

4 days ago

YARA-X's Dump Command, (Sun, Sep 15th)

4 days ago

YARA-X is not just a rewrite of YARA in Rust, it comes...

YARA 4.5.2 Release, (Sat, Sep 14th)

5 days ago

YARA 4.5.2 was released with 3 small changes and 4 bugfixes.

Finding Honeypot Data Clusters Using DBSCAN: Part 2, (Fri, Aug 23rd)

6 days ago

In an earlier diary [1], I reviewed how using tools like DBSCAN...

ISC Stormcast For Friday, September 13th, 2024 https://isc.sans.edu/podcastdetail/9136, (Fri, Sep 13th)

7 days ago