Apple Patches Exploited WebKit Vulnerabilitiues in iOS/iPadOS/macOS, (Thu, Nov 30th) Apple today released patches for two WebKit vulnerabilities affecting macOS, iPadOS and iOS. I woul... 2023-12-1 02:48:28 | 阅读: 5 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu exploited webkit addressed 42916

Prophetic Post by Intern on CVE-2023-1389 Foreshadows Mirai Botnet Expansion Today, (Thu, Nov 30th) Last week, Jonah Latimer posted here about traffic he saw to his own EC2 web honeypot exploiting CV... 2023-11-30 11:34:23 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu binout bambenek binarys arm5 download

ISC Stormcast For Thursday, November 30th, 2023 https://isc.sans.edu/podcastdetail/8758, (Thu, Nov 30th) 2023-11-30 10:0:2 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers isc feeds ssh

Decoding the Patterns: Analyzing DShield Honeypot Activity [Guest Diary], (Mon, Nov 27th) [This is a Guest Diary by Alex Rodriguez, an ISC intern as part of the SANS.edu BACS program]Hone... 2023-11-29 10:12:28 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu honeypot ssh trojan captured isc

ISC Stormcast For Wednesday, November 29th, 2023 https://isc.sans.edu/podcastdetail/8756, (Wed, Nov 29th) 2023-11-29 10:0:2 | 阅读: 11 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc feeds papers 29th stormcast

Pro Russian Attackers Scanning for Sharepoint Servers to Exploit CVE-2023-29357, (Tue, Nov 28th) In June, Microsoft released a patch for CVE-2023-29357, a critical privilege escalation vulnerabi... 2023-11-28 20:59:52 | 阅读: 22 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 29357 honeypots aeza scanned vienna

ISC Stormcast For Tuesday, November 28th, 2023 https://isc.sans.edu/podcastdetail/8754, (Tue, Nov 28th) 2023-11-28 10:0:2 | 阅读: 8 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers feeds isc sensor dshield

Scans for ownCloud Vulnerability (CVE-2023-49103), (Mon, Nov 27th) Last week, ownCloud released an advisory disclosing a new vulnerability, CVE-2023-49103 [1]. The vu... 2023-11-27 22:22:54 | 阅读: 18 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu owncloud passwords 203 graphapi 235

ISC Stormcast For Monday, November 27th, 2023 https://isc.sans.edu/podcastdetail/8752, (Mon, Nov 27th) 2023-11-27 10:0:2 | 阅读: 10 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers isc feeds stormcast mastodon

OVA Files, (Sat, Nov 25th) I had to figure out when a OVA file was published (for a virtual machine). The Open Virtualization... 2023-11-25 16:50:11 | 阅读: 8 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu ovf ova machine mf

Wireshark 4.2.0 Released, (Sat, Nov 25th) Published: 2023-11-25Last Updated: 2023-11-25 08:48:58 UTCby Didier Stevens (Version: 1)About 1... 2023-11-25 16:48:58 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu didier stevens bugfix ssh

Happy Birthday DShield, (Fri, Nov 24th) read file error: read notes: is a directory... 2023-11-24 11:20:40 | 阅读: 5 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu weekend earliest everybody liner piping

CVE-2023-1389: A New Means to Expand Botnets, (Wed, Nov 22nd) [This is a Guest Diary by Jonah Latimer, an ISC intern as part of the SANS.edu BACS program]Intro... 2023-11-23 02:25:42 | 阅读: 24 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu 1389 firmware honeypot archer exploited

Overflowing Web Honeypot Logs, (Mon, Nov 20th) While reviewing one of my honeypots to convert some of the JSON data, I noticed some of my files we... 2023-11-20 08:4:9 | 阅读: 15 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu jndi qualystest mozilla windows sizes

Quasar RAT Delivered Through Updated SharpLoader, (Sat, Nov 18th) SharpLoader is a very old project! I found repositories on Gitlab that are 8 years old[1]! Its purp... 2023-11-18 14:19:45 | 阅读: 12 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu payload writeline bytearray loader

Phishing page with trivial anti-analysis features, (Fri, Nov 17th) Anti-analysis features in phishing pages – especially in those, which threat actors send out as e-m... 2023-11-17 18:12:27 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu phishing somewhat attachment analysis diary

ISC Stormcast For Friday, November 17th, 2023 https://isc.sans.edu/podcastdetail/8750, (Fri, Nov 17th) 2023-11-17 10:0:1 | 阅读: 5 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu isc feeds papers developers

Beyond -n: Optimizing tcpdump performance, (Thu, Nov 16th) If you ever had to acquire packets from a network, you probably used tcpdump. Other tools (Wireshar... 2023-11-17 00:7:43 | 阅读: 4 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu msec gdate datamash verbosity 499

ISC Stormcast For Thursday, November 16th, 2023 https://isc.sans.edu/podcastdetail/8748, (Thu, Nov 16th) 2023-11-16 10:0:2 | 阅读: 7 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu papers isc feeds rpi mastodon

Redline Dropped Through MSIX Package, (Wed, Nov 15th) The MSIX package file format has been in the light for a few weeks. The GHOSTPULSE[1] malware has b... 2023-11-15 15:38:15 | 阅读: 4 | 收藏 | SANS Internet Storm Center, InfoCON: green - isc.sans.edu remnux msix malwarezoo zipdump