InfoSec Handlers Diary Blog - SANS Internet Storm Center
Tags
| attack-pattern: | Data Hardware - T1592.001 Server - T1583.004 Server - T1584.004 Ssh - T1021.004 Sudo - T1169 |
Common Information
| Type | Value |
|---|---|
| UUID | b1b0942d-7950-49df-894a-d8441da1a239 |
| Fingerprint | 3550971c6022bfa3 |
| Analysis status | DONE |
| Considered CTI value | 0 |
| Text language | |
| Published | Feb. 12, 2023, midnight |
| Added to db | Feb. 14, 2023, 3:03 p.m. |
| Last updated | Nov. 17, 2024, 11:40 p.m. |
| Headline | Internet Storm Center |
| Title | InfoSec Handlers Diary Blog - SANS Internet Storm Center |
| Detected Hints/Tags/Attributes | 27/1/33 |
Source URLs
| Redirection | Url | |
|---|---|---|
| Details | Source | https://isc.sans.edu/diary/rss/29530 |
URL Provider
RSS Feed
| Details | Id | Enabled | Feed title | Url | Added to db |
|---|---|---|---|---|---|
| Details | 142 | ✔ | SANS Internet Storm Center, InfoCON: green | https://isc.sans.edu/rssfeed_full.xml | 2024-08-30 22:08 |
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | download.opensuse.org |
|
| Details | Domain | 4128 | github.com |
|
| Details | Domain | 64 | ubuntu.com |
|
| Details | Domain | 52 | www.wireshark.org |
|
| Details | Domain | 4 | docs.zeek.org |
|
| Details | Domain | 425 | isc.sans.edu |
|
| Details | Domain | 40 | gchq.github.io |
|
| Details | File | 3 | release.key |
|
| Details | File | 18 | conn.log |
|
| Details | File | 14 | http.log |
|
| Details | File | 1 | 'weird.log |
|
| Details | File | 1 | mergecap.html |
|
| Details | File | 3 | install.html |
|
| Details | File | 1 | log-formats.html |
|
| Details | File | 816 | index.html |
|
| Details | File | 1 | zeek.html |
|
| Details | File | 3 | honeypot.html |
|
| Details | Github username | 2 | zeek |
|
| Details | Github username | 1 | rup0rt |
|
| Details | IPv4 | 2 | 192.168.68.178 |
|
| Details | Url | 1 | http://download.opensuse.org/repositories/security:/zeek/xubuntu_22.04 |
|
| Details | Url | 1 | https://download.opensuse.org/repositories/security:zeek/xubuntu_22.04/release.key |
|
| Details | Url | 1 | https://github.com/zeek/zeek |
|
| Details | Url | 2 | https://ubuntu.com/download/desktop |
|
| Details | Url | 1 | https://github.com/rup0rt/pcapfix |
|
| Details | Url | 22 | https://www.wireshark.org |
|
| Details | Url | 1 | https://www.wireshark.org/docs/man-pages/mergecap.html |
|
| Details | Url | 1 | https://docs.zeek.org/en/master/install.html |
|
| Details | Url | 1 | https://docs.zeek.org/en/master/log-formats.html |
|
| Details | Url | 1 | https://docs.zeek.org/en/master/logs/index.html |
|
| Details | Url | 1 | https://docs.zeek.org/en/master/scripts/base/protocols/conn/main.zeek.html |
|
| Details | Url | 3 | https://isc.sans.edu/honeypot.html |
|
| Details | Url | 27 | https://gchq.github.io/cyberchef |