Dig Security together —— 阅读、挖掘、评论,安全共进步。


Join
Login
Submit Story

Categories

View All
Alert
- Applications security
- Bugtraq
- Exploit from milw0rm
- Exploit from packetstorm
- SANS Handler's Diary
- Virus
- WHID
Attack Vector
- ActiveX
- Botnet
- Data loss
- DDoS
- Emerging Threat
- Iframe
- Insider
- Phishing
- Privacy
- Web defacement
- XSS
Cyber-War
Material
- Ebook
- Podcast
- Security Cartoon
- Tools
Olympics
People
- Why
- zhaol
Sector-Specific
- Banking, Finance & Insurance
- E-commerce & Retail
- Educational Institutions
- Energy, Power & Utilities
- Enterprises
- Government
- Telecommunications
Security Giant
- Cisco
- Google
- IBM
- Microsoft
- NSFOCUS
- Symantec
Security Industry
- Cloud
- Conference
- Jobs
- News
- startup
- web2.0
Security Services
- Incident Response
- ISMS
- IT Audit
- Regulatory Compliance
- Risk Management
- Security Awareness
- Threat Management
- Vulnerability Management
Standard
- BS 25999
- BS 31100
- CMMi
- COBIT
- ISO 20000
- ISO 27001
- ISO 38500

Tag Cloud
SANS Handler's Diary


1
digs
Healthcare Spam, (Thu, Sep 10th)
submitted by wanghongyang 182 days ago (via isc.sans.org)
Shorty after President Obama finished his speech about healthcare earlier tonight, our reader Roy received an email advising him to sign up for a Low Income Healthcare Enrollment. If you see something similar, let us know. The possibilities for phishing, malware and other scams are endless with current events like this. As usual, you will not receive an e-mail from a government agency asking yo
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary
1
digs
Cool combination of tools, (Sun, Mar 1st)
submitted by wanghongyang 374 days ago (via isc.sans.org)
I've mentioned here before that I'm a big fan of Volatility for analyzing memory images. In fact, Volatility plays a big part in my upcoming paper on automating malware behavioral analysis (more on that soon). I'm also a fan of Harlan Carvey's RegRipper, a set of Perl scripts for parsing the Windows registry. A couple of weeks ago, Brendan Dolan-Gavitt mentioned in his blog that it would be cool t
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary
1
digs
Layer 2 Network Protections – reloaded!, (Mon, Dec 7th)
submitted by wanghongyang 93 days ago (via isc.sans.org)
So Rob, you say, arent we done talking about protecting switches and the like at Layer 2 yet? We talked about Man in the Middle Attacks in October, and Layer 2 remediation against Man in the Middle Attacks in November, that should cover it, right? The short answer is no we havent talked about Broadcast control or MACaddress flooding yet ! Broadcasts are part of everyday life on most net
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary
1
digs
Did you check your conference goodies?, (Fri, Apr 24th)
submitted by wanghongyang 320 days ago (via isc.sans.org)
http://twitter.com/besecure
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary
1
digs
SANS Internet Storm Center Winner of RSA Social Security Award for Best Technical Blog, (Fri, Apr 24th)
submitted by wanghongyang 320 days ago (via isc.sans.org)
John Bambenek / bambenek at gmail /dot/ com
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary
1
digs
How Malware Defends Itself Using TLS Callback Functions, (Fri, Jun 26th)
submitted by wanghongyang 258 days ago (via isc.sans.org)
Malware authors employ numerous and creative techniques to protect their executables from reverse-engineering. The arsenal includes an anti-debugging technique called TLS callback, which I'd like to describe in this note. (Thanks toC. W. for his insights regarding this topic!) What is TLS? According to Microsoft, Thread Local Storage (TLS) is a mechanism that allows Microsoft Windows to define d
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary
1
digs
New and updated cheat sheets, (Thu, Aug 13th)
submitted by wanghongyang 210 days ago (via isc.sans.org)
A couple of things Inoticed on twitter today and thought you might be interested. Our friend, Jeremy Stretch, at packetlife.net is in the process of updating some of his excellent networking cheat sheets (Imentioned his 802.1x one here). Check them out at http://packetlife.net/cheatsheets/ and look for the ones at version 2.0 or greater (if your favorite hasn't been updated yet, check back in a f
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary
1
digs
A view from the CWG Trenches, (Thu, Apr 2nd)
submitted by wanghongyang 342 days ago (via isc.sans.org)
To quote another participant in CWG, i doubted it would work, i signed up reluctantly. i am glad i was proven wrong.
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary
1
digs
1
digs
RIM fixes random code execution vulnerability, (Thu, Nov 5th)
submitted by wanghongyang 125 days ago (via isc.sans.org)
Affected: BlackBerry Desktop Software version 5.0 and earlier (on all platforms) - IBM Lotus Notes Intellisync Fixed in version 5.01 CVSS score: 9.3 CVE-2009-0306 More info: KB19701 The KB contains a workaround for those not eeding the Lotus Notes Intellisync functionality. Thanks to Greg for sending this in. -- Swa Frantzen -- Section 66
 
0 Comments - More Info - Bury   Topic: SANS Handler's Diary






©2008 2sec.org - All content for this site is under a Creative Commons license
About us  |  Contact us  |  FAQ  |  Feedback  |  Links  |  京ICP备07018489号