TsuSUZUKIのブックマーク - はてなブックマーク

TsuSUZUKI id:TsuSUZUKI

ブックマーク / isc.sans.edu (50)

Internet Storm Center Diary 2024-04-04 - SANS Internet Storm Center
TsuSUZUKI 2023/10/04
SANS

ZeroFont
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2022/06/06
RECmd.exe

regedit.exe

RegistryExplorer

SANS
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2022/01/08
cf. https://www.itmedia.co.jp/news/articles/2201/02/news017.html

Microsoft

Exchange
リンク
InfoSec Handlers Diary Blog - CVE-2020-16898: Windows ICMPv6 Router Advertisement RRDNS Option Remote Code Execution Vulnerability
TsuSUZUKI 2020/10/26
CVE-2020-16898

ICMPv6

Windows

RRDNS
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2019/10/05
SANS

libpcap

tcpdump
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2016/12/12
SANS

ISC

IoT

Vulnerability

脆弱性

SecurityUpdate

Security
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2016/12/11
VBS

SANS

ISC

Malware
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2016/12/09
SANS

ISC

password

パスワード
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2015/08/11
"sigcheck -ct -h -s -e c:\Windows\System32 > sigcheck-system32.csv" "awk -F '\t' '{print $10}' sigcheck-system32.csv | tail -n +2 | sed 's/"//g' | sort -u"

Sigcheck

Sysinternals

SANS

Cygwin

unixtools
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2015/03/09
"netsh trace start capture=yes IPv4.Address=192.168.122.2" / Microsoft Message Analyzer

netsh

MessageAnalyzer

Wireshark

tcpdump

ETL
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
I've received several reports of what appears to be shellshock exploit attempts via SMTP. The sources so far have all be webhosting providers, so I'm assuming these are compromised systems. The em ails headers look something like this (thanks Justin for the anonymized headers, no thanks to Outlook for helpfully trying to make the links live): The payload is an IRC perl bot with simple DDoS comman
TsuSUZUKI 2014/10/26
perl

CML

bash

SMTP

Shellshock
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2014/06/07
"nmap –sU –A –PN –n –pU:19,53,123,161 –script=ntp-monlist,dns-recursion,snmp-sysdescr <target>"

nmap

DDoS
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2014/06/03
cf. http://itpro.nikkeibp.co.jp/article/NEWS/20140603/561145/

SANS

Zeus

Cryptolocker
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2014/05/22
cf. http://zerodayinitiative.com/advisories/ZDI-14-140/

IE

0-Day

ZDI

CVE-2014-1770
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2014/04/26
cf. http://www.itmedia.co.jp/enterprise/articles/1404/24/news040.html

バックドア

BackDoor

32764

TCP

Sercomm

Cisco
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2014/01/03
[32764/TCP][ルーター]

Linksys

Backdoor
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2013/09/21
cf. http://megalodon.jp/2013-0922-1958-39/https://isc.sans.edu:443/forums/diary/Threat+Level+Yellow+Protection+recommendations+regarding+Internet+Explorer+exploits+in+the+wild/16634

ThreatLevel

SANS
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2013/09/04
cf. https://www.torproject.org/

Tor

.onion
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2013/08/22
cf. https://zmap.io/

ZMAP
リンク
SANS - Internet Storm Center - Cooperative Cyber Threat Monitor And Alert System
TsuSUZUKI 2013/07/18
NetworkSolutions

DDoS

SANS
リンク
1 2 3 次のページ

お知らせ

もっと読む

公式Twitter

@HatenaBookmark
リリース、障害情報などのサービスのお知らせ
@hatebu
最新の人気エントリーの配信

キーボードショートカット一覧

j次のブックマーク

k前のブックマーク

lあとで読む

eコメント一覧を開く

oページを開く

設定を変更しましたx