RSS Parrot

BETA

🦜 SANS Internet Storm Center, InfoCON: green

@isc.sans.edu@rss-parrot.net

I'm an automated parrot! I relay a website's RSS feed to the Fediverse. Every time a new post appears in the feed, I toot about it. Follow me to get all new posts in your Mastodon timeline! Brought to you by the RSS Parrot.

---

SANS Internet Storm Center - Cooperative Cyber Security Monitor

Your feed and you don't want it here? Just e-mail the birb.

Site URL: isc.sans.edu

Feed URL: isc.sans.edu/rssfeed.xml

Posts: 12

Followers: 2

Analyzing MSG Files, (Mon, May 20th)

Published: May 20, 2024 10:34

.msg email files are ole files and can be analyzed with my tool oledump.py.

Wireshark 4.2.5 Released, (Sat, May 18th)

Published: May 18, 2024 14:25

Wireshark release 4.2.5 fixes 3 vulnerabilities (%%cve:2024-4853%%, %%cve:2024-4854%% and %%cve:2024-4855%%) and 19 bugs.

Another PDF Streams Example: Extracting JPEGs, (Fri, May 17th)

Published: May 17, 2024 12:04

In my diary entry "Analyzing PDF Streams" I showed how to use my tools file-magic.py and myjson-filter.py together with my PDF analysis tool pdf-parser.py to analyze PDF streams en masse.

Why yq? Adventures in XML, (Thu, May 16th)

Published: May 16, 2024 12:04

I was recently asked to "recover" a RADIUS key from a Microsoft NPS server.&#;x26;#;xc2;&#;x26;#;xa0; No problem I think, just export the config and it&#;x26;#;39;s all there in clear text right?

Got MFA? If not, Now is the Time!, (Wed, May 15th)

Published: May 15, 2024 12:04

I had an interesting call from a client recently - they had a number of "net use" and "psexec" commands pop up on a domain controller, all called from PSEXEC (thank goodness for a good EDR deployed across the board!!). The source IP was a VPN session.

Microsoft May 2024 Patch Tuesday, (Tue, May 14th)

Published: May 14, 2024 17:28

This month we got patches for 67 vulnerabilities. Of these, 1 are critical, and 1 is being exploited according to Microsoft.

Apple Patches Everything: macOS, iOS, iPadOS, watchOS, tvOS updated., (Tue, May 14th)

Published: May 14, 2024 01:43

Apple today released updates for its various operating systems. The updates cover iOS, iPadOS, macOS, watchOS and tvOS. A standalone update for Safari was released for older versions of macOS. One already exploited vulnerability, CVE-2024-23296 is patched…