Skip to content

Didier Stevens Videos

Search for:

Home
About
count.py

Didier Stevens Videos RSS

RSS - Posts

Search for:

Recent Posts

Dealing with obfuscated rtf files
PDF’s /URI
PyBoard LCD160CR Text Scrolling
Bash Bunny InfiniteControl Payload
Metasploit’s msf.docm Analysis

Recent Comments

	Overview of Content… on Dealing with obfuscated rtf…
	Overview of Content… on PDF’s /URI
	Overview of Content… on PyBoard LCD160CR Text Scr…
	Overview of Content… on Bash Bunny InfiniteControl…
	Overview of Content… on Metasploit’s msf.docm An…

Archives

December 2017
August 2017
July 2017
June 2017
May 2017
April 2017
March 2017
December 2016
November 2016
October 2016
July 2016
May 2016
December 2015
November 2015
October 2015
September 2015
August 2015
July 2015
June 2015
May 2015
April 2015
March 2015
February 2015
January 2015
December 2014
November 2014
October 2014
September 2014
August 2014
July 2014

Categories

malware
my software
Uncategorized
video

Meta

Register
Log in
Entries RSS
Comments RSS
WordPress.com

my software

Dealing with obfuscated rtf files

Tools: rtfdump.py

ISC Diary entry: Dealing with obfuscated RTF files

Sample: a3d89108e4a13900c299d7c5f6d687e0

1 Comment

December 31, 2017 Didier Stevens

PDF’s /URI

Tools: pdfid.py, pdf-parser.py

Sample: 58ddf75566260679506fdaf4da2adda5

1 Comment

December 31, 2017December 31, 2017 Didier Stevens

Bash Bunny InfiniteControl Payload

Payload: InfiniteControl

1 Comment

December 31, 2017 Didier Stevens

Metasploit’s msf.docm Analysis

Tools: oledump.py, zipdump.py, base64dump.py, pecheck.py, Metasploit

1 Comment

August 21, 2017 Didier Stevens

It’s Not An Invoice

Tools: oledump.py, base64dump.py

Sample: 9c4c3234f20b6102569216675b48c70a

ISC Diary Entry: It’s Not An Invoice …

1 Comment

August 21, 2017 Didier Stevens

Emotet Maldoc & ViperMonkey

Tools: oledump.py, zipdump.py, base64dump.py, ViperMonkey

Sample: a6434a6054470ec73d1d21475f6a3a59

1 Comment

August 10, 2017August 10, 2017 Didier Stevens

Ransomware: Very Simple IOC Extraction

Tools: re-search.py, base64dump.py

Sample: 027cc450ef5f8c5f653329641ec1fed91f694e0d229928963b30f6b0d7d3a745

1 Comment

July 2, 2017July 3, 2017 Didier Stevens

Posts navigation

← Older posts

Blog at WordPress.com.

Didier Stevens Videos

Blog at WordPress.com.

Post to

Cancel