user avatar
SANS.edu Internet Storm Center
@sans_isc
@[email protected] - isc.sans.edu - Global Network Security Information Sharing Community -
Jacksonville, FL, USA
isc.sans.edu
Joined June 2007
86
Following
117.2K
Followers
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Jul 8, 2020
    To whoever is trying to run these Python backdoors on our F5 #BigIP honeypot: Slow down... it doesn't work because you keep overwriting your files. Or randomize your filenames better.
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Apr 19, 2021
    Hunting phishing websites with favicon hashes isc.sans.edu/diary/27326
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Jul 16, 2023
    Brute-Force ZIP Password Cracking with zipdump.py: FP Fix i5c.us/d30032
    83K
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Mar 29, 2024
    A quick note about xz-utils backdoor: 1 - luckily, this was caught early. 2 - most run xz-utils 5.2/5.4. 5.6 is bad. 3 - quick check: `xz -V` 4 - Thanks to people who paid attention openwall.com/lists/oss-secuโ€ฆ cisa.gov/news-events/alโ€ฆ
    269K
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Nov 23, 2024
    Decrypting a PDF With a User Password isc.sans.edu/diary/31466
    29K
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Jun 18, 2023
    Brute-Force ZIP Password Cracking with zipdump.py i5c.us/d29948
    67K
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Oct 23, 2020
    Sooty: SOC Analyst's All-in-One Tool isc.sans.edu/diary/26714
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Dec 24, 2021
    Example of how attackers are trying to push crypto miners via Log4Shell i5c.us/d28172
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    May 9, 2022
    guess we no longer have to worry about CVE-2022-1388 if this makes the rounds... @f5 #bigip
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Dec 14, 2021
    #log4shell is now a @CNN headline. This means: This is no longer an emergency. Going back to infocon green. Log4j will be a multi-year marathon. Do not treat it like a sprint or you will run out of breath quickly.
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Nov 29, 2021
    Wireshark 3.6.0 Released i5c.us/d28076
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Jun 18, 2020
    Broken phishing accidentally exploiting Outlook zero-day isc.sans.edu/diary/26254
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Apr 29, 2021
    Let's see if a kitten picture will get us to 100k followers by the end of the month ;-) #networkcats #kittens #networksupportkitten #evilbutcute
  • user avatar
    SANS.edu Internet Storm Center
    @sans_isc
    Jan 26, 2022
    Over 20 thousand servers have their iLO exposed to the internet, many are outdated and vulnerable i5c.us/d28276