Diaries by Keyword - SANS Internet Storm Center

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Handler on Duty: Didier Stevens

Threat Level: green

Date	Author	Title
RETRO HUNTING
2017-03-15	Xavier Mertens	Retro Hunting!
RETRO
2017-09-02/a>	Xavier Mertens	AutoIT based malware back in the wild
2017-03-15/a>	Xavier Mertens	Retro Hunting!
HUNTING
2022-12-20/a>	Xavier Mertens	Linux File System Monitoring & Actions
2022-12-19/a>	Xavier Mertens	Hunting for Mastodon Servers
2021-03-17/a>	Xavier Mertens	Defenders, Know Your Operating System Like Attackers Do!
2020-08-24/a>	Xavier Mertens	Tracking A Malware Campaign Through VT
2020-01-25/a>	Guy Bruneau	Is Threat Hunting the new Fad?
2020-01-21/a>	Russ McRee	DeepBlueCLI: Powershell Threat Hunting
2019-10-10/a>	Rob VandenBrink	Mining Live Networks for OUI Data Oddness
2019-07-17/a>	Xavier Mertens	Analyzis of DNS TXT Records
2019-03-27/a>	Xavier Mertens	Running your Own Passive DNS Service
2018-11-20/a>	Xavier Mertens	Querying DShield from Cortex
2018-10-17/a>	Russ McRee	RedHunt Linux - Adversary Emulation, Threat Hunting & Intelligence
2018-09-20/a>	Xavier Mertens	Hunting for Suspicious Processes with OSSEC
2018-08-10/a>	Remco Verhoef	Hunting SSL/TLS clients using JA3
2018-06-21/a>	Xavier Mertens	Are Your Hunting Rules Still Working?
2017-12-02/a>	Xavier Mertens	Using Bad Material for the Good
2017-11-23/a>	Xavier Mertens	Proactive Malicious Domain Search
2017-10-18/a>	Renato Marinho	Baselining Servers to Detect Outliers
2017-09-02/a>	Xavier Mertens	AutoIT based malware back in the wild
2017-03-15/a>	Xavier Mertens	Retro Hunting!
2016-07-12/a>	Xavier Mertens	Hunting for Malicious Files with MISP + OSSEC