Snort - the de facto standard for intrusion detection/prevention
Lurene Grenier from our VRT team at Sourcefire does a great job of flushing this "Blackworm" Nymex virus thing down the toilet. Apparently this is the same worm that was released two years ago, and it still just as lame.
In case you haven't heard what I am talking about, all, I am talking about this worm right here (Click)
It's all over the news: Information Week Article and the analysis is running rampant.
I get an IM from my Director of Vulnerability Research, asking me if I can get a copy of the virus. To which, a 1/2 hour later I had a copy and emailed to him. Afterwards, he was working hard. Here is a VRT analysis.
Finally all the pcaps for the virus: Pcaps.
Enjoy.
Subscribe to:
Post Comments (Atom)
A shortcut to make a PDF out of a webpage and save it to Notes.app
While on MacOS (and iOS) you can use the Share Sheet from Safari to share a webpage to Notes, it only shares the title, URL, and the favicon...
-
Without going off the deep-end here and discussing every single Snort rule keyword, I just wanted to touch on a few modifiers that people so...
-
While on MacOS (and iOS) you can use the Share Sheet from Safari to share a webpage to Notes, it only shares the title, URL, and the favicon...
-
National Post Damn this makes me mad. The Runaway Bride is going to cash in... grrr..
No comments:
Post a Comment