News

When MacOS Catalina Comes to Life: The First Few Minutes of Network Traffic From MacOS 10.15., (Mon, Oct 14th)

Published October 16, 2019

This post is continuing a series I started in April about network traffic from Windows 10. When dealing with network traffic, it is always good to know what is normal. As part of this series, I will investigate the first few minutes of network traffic from current operating systems. With macOS 10.15 Catalina just being […]

Read more

New VMware security advisory: https://www.vmware.com/security/advisories/VMSA-2019-0016.html | Oracle quarterly patches bundle: https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html, (Wed, Oct 16th)

Published October 16, 2019

Xavier Mertens (@xme) Senior ISC Handler – Freelance Cyber Security Consultant PGP Key (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more

Security Monitoring: At Network or Host Level?, (Wed, Oct 16th)

Published October 16, 2019

Today, to reach a decent security maturity, the keyword remains “visibility”. There is nothing more frustrating than being blind about what’s happening on a network or starting an investigation without any data (logs, events) to process. The question is: how to efficiently keep an eye on what’s happening on your network? There are three key […]

Read more

ISC Stormcast For Wednesday, October 16th 2019 https://isc.sans.edu/podcastdetail.html?id=6710, (Wed, Oct 16th)

Published October 15, 2019

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more

Issue #81 – Volume XXI – SANS Newsbites – October 15th, 2019

Published October 15, 2019

Reposted from SANS NewsBites. Click here to read the original posting.

Read more

ISC Stormcast For Tuesday, October 15th 2019 https://isc.sans.edu/podcastdetail.html?id=6708, (Tue, Oct 15th)

Published October 14, 2019

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more

YARA's XOR Modifier, (Mon, Oct 14th)

Published October 14, 2019

YARA searches for strings inside files. Strings to search for are defined with YARA rules. With the release of YARA 3.8.0, support for searching for XOR encoded strings was introduced. By adding the modifier xor to the definition of a string, YARA 3.8.0 would search for strings that were XOR encoded, with a single-byte key, […]

Read more

ISC Stormcast For Monday, October 14th 2019 https://isc.sans.edu/podcastdetail.html?id=6706, (Mon, Oct 14th)

Published October 13, 2019

(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more

YARA v3.11.0 released, (Sat, Oct 12th)

Published October 12, 2019

A new version of YARA was released: v3.11.0. New features that got my attention: more flexible XOR modifier and private strings.   Didier Stevens Senior handler Microsoft MVP blog.DidierStevens.com DidierStevensLabs.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License. Reposted from SANS. View original.

Read more

Issue #80 – Volume XXI – SANS Newsbites – October 11th, 2019

Published October 11, 2019

Reposted from SANS NewsBites. Click here to read the original posting.

Read more