InfoSec Handlers Diary Blog - SANS Internet Storm Center
Tags
attack-pattern: Credentials - T1589.001 Dns - T1071.004 Dns - T1590.002 Malware - T1587.001 Malware - T1588.001 Powershell - T1059.001 Python - T1059.006 Server - T1583.004 Server - T1584.004 Software - T1592.002 Vulnerabilities - T1588.006 Hypervisor - T1062 Powershell - T1086 Default Credentials
Show in Graph
Common Information
Type Value
UUID cf54c853-51bf-4fff-9f67-22d6fb988bdc
Fingerprint bcb3cc17c107c5e3
Analysis status DONE
Considered CTI value 0
Text language
Published Feb. 4, 2019, midnight
Added to db Feb. 17, 2023, 10:44 p.m.
Last updated Nov. 17, 2024, 5:55 p.m.
Headline Internet Storm Center
Title InfoSec Handlers Diary Blog - SANS Internet Storm Center
Detected Hints/Tags/Attributes 50/1/30
Source URLs
Redirection Url
Details Source https://isc.sans.edu/diary/rss/24606
URL Provider
Details Provider Source level domain
Details sans.edu isc.sans.edu
Attributes
Details Type #Events CTI Value
Details CVE 122 
cve-2017-5638
Details Domain 1 
rshell.py
Details Domain 258 
nmap.org
Details Domain 14 
docs.python.org
Details Domain 170 
www.sans.org
Details Domain 41 
www.cisecurity.org
Details Domain 150 
www.vmware.com
Details File 1 
rshell.py
Details File 1 
heapsize_wrapper.bat
Details File 1 
installperfcharts.bat
Details File 1 
queryperfcharts.bat
Details File 1 
startperfcharts.bat
Details File 1 
stopperfcharts.bat
Details File 1 
uninstallperfcharts.bat
Details File 11 
wrapper.exe
Details File 19 
nmap.exe
Details File 14 
docs.py
Details File 1 
vmsa-2017-0004.html
Details IPv4 1 
192.168.206.100
Details IPv4 1 
192.168.206.129
Details Url 1 
https://pen-testing.sans.org/blog/2017/01/31/pen-test-poster-white-board-python-python-reverse-shell
Details Url 1 
https://192.168.206.100/statsreport
Details Url 1 
https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170310-struts2#vulnerable
Details Url 31 
http://nmap.org
Details Url 2 
https://docs.python.org
Details Url 1 
https://www.sans.org/course/automating-information-security-with-python
Details Url 1 
https://www.sans.org/course/virtualization-and-software-defined-security
Details Url 3 
https://www.cisecurity.org/cis-benchmarks
Details Url 3 
https://www.cisecurity.org/controls
Details Url 1 
https://www.vmware.com/security/advisories/vmsa-2017-0004.html