News
When MacOS Catalina Comes to Life: The First Few Minutes of Network Traffic From MacOS 10.15., (Mon, Oct 14th)
This post is continuing a series I started in April about network traffic from Windows 10. When dealing with network traffic, it is always good to know what is normal. As part of this series, I will investigate the first few minutes of network traffic from current operating systems. With macOS 10.15 Catalina just being […]
Read moreNew VMware security advisory: https://www.vmware.com/security/advisories/VMSA-2019-0016.html | Oracle quarterly patches bundle: https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html, (Wed, Oct 16th)
Xavier Mertens (@xme) Senior ISC Handler – Freelance Cyber Security Consultant PGP Key (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read moreSecurity Monitoring: At Network or Host Level?, (Wed, Oct 16th)
Today, to reach a decent security maturity, the keyword remains “visibility”. There is nothing more frustrating than being blind about what’s happening on a network or starting an investigation without any data (logs, events) to process. The question is: how to efficiently keep an eye on what’s happening on your network? There are three key […]
Read moreISC Stormcast For Wednesday, October 16th 2019 https://isc.sans.edu/podcastdetail.html?id=6710, (Wed, Oct 16th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read moreIssue #81 – Volume XXI – SANS Newsbites – October 15th, 2019
Reposted from SANS NewsBites. Click here to read the original posting.
Read moreISC Stormcast For Tuesday, October 15th 2019 https://isc.sans.edu/podcastdetail.html?id=6708, (Tue, Oct 15th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read moreYARA's XOR Modifier, (Mon, Oct 14th)
YARA searches for strings inside files. Strings to search for are defined with YARA rules. With the release of YARA 3.8.0, support for searching for XOR encoded strings was introduced. By adding the modifier xor to the definition of a string, YARA 3.8.0 would search for strings that were XOR encoded, with a single-byte key, […]
Read moreISC Stormcast For Monday, October 14th 2019 https://isc.sans.edu/podcastdetail.html?id=6706, (Mon, Oct 14th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read moreYARA v3.11.0 released, (Sat, Oct 12th)
A new version of YARA was released: v3.11.0. New features that got my attention: more flexible XOR modifier and private strings. Didier Stevens Senior handler Microsoft MVP blog.DidierStevens.com DidierStevensLabs.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.
Read moreIssue #80 – Volume XXI – SANS Newsbites – October 11th, 2019
Reposted from SANS NewsBites. Click here to read the original posting.
Read more
