blog.didierstevens.com
Didier Stevens | (blog \’DidierStevens)(blog \'DidierStevens)
http://blog.didierstevens.com/
(blog \'DidierStevens)
http://blog.didierstevens.com/
TODAY'S RATING
>1,000,000
Date Range
HIGHEST TRAFFIC ON
Saturday
LOAD TIME
0.4 seconds
16x16
32x32
PAGES IN
THIS WEBSITE
31
SSL
EXTERNAL LINKS
1,331
SITE IP
192.0.78.12
LOAD TIME
0.412 sec
SCORE
6.2
Didier Stevens | (blog \’DidierStevens) | blog.didierstevens.com Reviews
https://blog.didierstevens.com
(blog \'DidierStevens)
blog.didierstevens.com
oledump.py | Didier Stevens
https://blog.didierstevens.com/programs/oledump-py
I produced videos for my oledump tool, you can find them on Didier Stevens Labs products page. Oledump.py is a program to analyze OLE files ( Compound File Binary Format. These files contain streams of data. oledump allows you to analyze these streams. Many applications use this file format, the best known is MS Office. .doc, .xls, .ppt, … are OLE files (docx, xlsx, … is the new file format: XML inside ZIP). Oledump has an embedded man page: run oledump.py -m to view it. You might have noticed that the f...
PDFiD | Didier Stevens
https://blog.didierstevens.com/2009/03/31/pdfid
Tuesday 31 March 2009. 8212; Didier Stevens @ 7:08. I’ve developed a new tool to triage PDF documents, PDFiD. It helps you differentiate between PDF documents that could be malicious and those that are most likely not. I’ve kept the design very simple (it’s not a parser, but a string scanner) to be fast and to avoid exploitable bugs. Will included it if Julio Canto is satisfied with the tests. 34 Comments ». 8212; Tuesday 31 March 2009 @ 7:17. 8212; Tuesday 31 March 2009 @ 10:28. Comment by Didier Stevens.
USBVirusScan | Didier Stevens
https://blog.didierstevens.com/programs/usbvirusscan
USBVirusScan will launch any program you provide as a command line parameter each time a USB stick is inserted. I use it to start a full virus scan on the inserted USB drive, hence the name. For example, to start a cmd.exe on each USB drive you insert, you start USBVirusScan like this:. USBVirusScan cmd /k %d:. D (or %c for legacy reasons) is a placeholder for the drive-letter of the inserted USB drive. USBVirusScan -i cmd /k %d:. The -q switch will stop a running instance of USBVirusScan. The volume nam...
cmd.dll | Didier Stevens
https://blog.didierstevens.com/2010/02/04/cmd-dll
Thursday 4 February 2010. 8212; Didier Stevens @ 1:16. This is something I’ve wanted to do for some time: take a command interpreter and transform it from an EXE into a DLL. Well, because it’s a fun challenge😉. But also because a DLL is loaded into a process. In a restricted environment, it can be injected into a legitimate process and thus bypass the restriction mechanisms. Metasploit’s Meterpreter is another example of a command interpreter in DLL form. And the ReactOS build environment. And because a...
NAFT Release | Didier Stevens
https://blog.didierstevens.com/2012/03/12/naft-release
Monday 12 March 2012. Filed under: My Software. 8212; Didier Stevens @ 19:41. You can find a first release of my Network Appliance Forensic Toolkit. This first release contains a tool for generic network appliances, but also works on memory dumps of PC operating systems like Windows. 12 Comments ». I’m trying to run the naft-gfe.py tool against a Windows 7 (64-bit) DD memory image, and I’m getting the following:. Shell$ python /NAFT V0 0 5/naft-gfe.py memory.pcap memory.raw. Am I doing something wrong?
TOTAL PAGES IN THIS WEBSITE
31
Sploited: SANS Forensic Artifact 1: Open/Save MRU
http://sploited.blogspot.com/2012/10/sans-forensic-artifact-1-opensave-mru.html
Wednesday, 10 October 2012. SANS Forensic Artifact 1: Open/Save MRU. As most of you would have seen by now SANS posted a fantastic forensic poster. For everybody to use which will "map a specific artifact to the analysis question that it will help to answer". Basically what that means is that SANS have 8 categories used to determine an analysis question. "Was the file opened? SANS lists the following information within the poster. Called SANS ForensicArtifact1 MRU 1.txt and SANS ForensicArtifact1 MRU...
contagio: Potao Express samples
http://contagiodump.blogspot.com/2015/08/potao-express-samples.html
Mobile and print friendly view. Wednesday, August 12, 2015. Http:/ www.welivesecurity.com/2015/07/30/operation-potao-express/. Http:/ www.welivesecurity.com/wp-content/uploads/2015/07/Operation-Potao-Express final v2.pdf. Aka Sapotao and node69. Group - Sandworm / Quedagh APT. Vectors - USB, exe as doc, xls. Victims - RU, BY, AM, GE. Victims - MMM group, UA gov. Truecryptrussia.ru has been serving modified versions of the encryption software (Win32/FakeTC) that included a backdoor to selected targets.
Musings on Information Security - Luxembourg / A blog by Thierry Zoller.: August 2012
http://blog.zoller.lu/2012_08_01_archive.html
Where facts are few, experts are many. TZO Daily Security News. Mistakes made in Incident Response. Updated : Added 10 Common Mistakes of Incident Responders at the bottom]. The following post will brake one major rule I adhere to when blogging, a post shall have not more than 10% of content that is not authored by myself. The content of this post resonated so well with me however that I decided to make an exception. The following is attributed to Alit-Reza Anghaie a.k.a Packetknife.com. 1999 - Bruce S...
Other to Think: ottobre 2011
http://othertothink.blogspot.com/2011_10_01_archive.html
I think geek, i live geek! Morto Dennis Ritchie A Lui Dobbiamo Il Linguaggio C E UNIX. E morto Dennis Ritchie. E stato uno di quegli uomini che certamente avrebbe meritato l' appellativo di genio. Uno di quegli uomini che i media. Avrebbero dovuto ricordare come tale se non altro per il contributo vero. Che ha dato all 'informatica. Non vendeva aggeggi alla moda. Non e stato un buon markettaro di oggetti cool. Quindi non vale la pena di riservargli qualche riga come avrebbe meritato. The Editor for Geek.
Other to Think: luglio 2010
http://othertothink.blogspot.com/2010_07_01_archive.html
I think geek, i live geek! Python Piccoli Tips di Sistema Gnu/Linux. Colpa del grande caldo. Che non si sopporta dalle mie parti, e il rischio concreto di friggere qualche componente. Hardware( oltre al bagno di sudore che si fà inevitabilmente stando faccia a faccia con un monitor. Ho deciso di mettere in ferie Other to Think. Anche se ad essere sincero fino in fondo, ne approfitto, nel modo più sereno e rilassato possibile, per fare delle scelte( anche importanti. Ci rivedremo prima di settembre. Resou...
VirtualF's chaotic mindblaster: Office Firewall
http://virtualf.blogspot.com/2010/06/office-firewall.html
This is the virtual desk of VirtualF. Be aware that some ppl think that I am misorganized when it comes to my desktop/office, but that's only the opinion of some persons grin. Thursday, June 17, 2010. Some time ago a french Minister mentioned in an official talk that there is a firewall in Office. Lots of ppl laughed at her at that time but now it has become reality. The Office Firewall. Subscribe to: Post Comments (Atom). Quotation of the Day. ADD / XOR / ROL. Update: rtfdump Version 0.0.4.
VirtualF's chaotic mindblaster: 2009-01-18
http://virtualf.blogspot.com/2009_01_18_archive.html
This is the virtual desk of VirtualF. Be aware that some ppl think that I am misorganized when it comes to my desktop/office, but that's only the opinion of some persons grin. Wednesday, January 21, 2009. Finally I registered for Cansecwest. That will be the 4th time I'll participate and I am already looking forward to it as Dragos is really the perfect conference organiser. :). So see you in march in Vancouver. Monday, January 19, 2009. Good news. On 16.2 C3L. Looking forward to it. Quotation of the Day.
VirtualF's chaotic mindblaster: 2009-06-07
http://virtualf.blogspot.com/2009_06_07_archive.html
This is the virtual desk of VirtualF. Be aware that some ppl think that I am misorganized when it comes to my desktop/office, but that's only the opinion of some persons grin. Saturday, June 13, 2009. Just about to view the HOME. Documentary. HOME jsut came out for the day of environment and was directed and produced by Yann Arthus-Bertrand and Luc Besson, i think it's worth having a look at it. Stay tuned I will report more about the movie once I've seen it. Subscribe to: Posts (Atom). ADD / XOR / ROL.
TOTAL LINKS TO THIS WEBSITE
1,331
ディジュマサラのディジュリドゥ製作 – ハンドクラフトディジュリドゥショップ。didgemasala
WEB SHOP : https:/ didgemasala.handcrafted.jp. ホームページ http:/ didgemasala.com. Facebook : https:/ www.facebook.com/didgemasala/. WEB SHOP : https:/ didgemasala.handcrafted.jp. ホームページ http:/ didgemasala.com. Facebook : https:/ www.facebook.com/didgemasala/. WEB SHOP : https:/ didgemasala.handcrafted.jp. ホームページ http:/ didgemasala.com. Facebook : https:/ www.facebook.com/didgemasala/. ディジュリドゥ ビギナー向け Type 2. ビギナー向け Type 2 杉のディジュリドゥが完成しました。 WEB SHOP : https:/ didgemasala.handcrafted.jp. ディジュリドゥ ビギナー向け Type 2に.
Didgeridoo Breath Blog - News, Updates & More! Didgeridoo Breath Blog
Learn to Play Didgeridoo. Learn to Play Downloads. Learn to Play CDs and DVD. Learn to Play Online. In-Store Lessons and Classes. Fish out of Water. Jesse Tree Project Indijika. Latest stock home page. Take a Virtual Tour. What is a Didgeridoo. Didgeridoos that are hand made,. Easy to play and sound great. Learn to Play Didgeridoo. Learn to Play Downloads. Learn to Play CDs and DVD. Learn to Play Online. In-Store Lessons and Classes. Fish out of Water. Jesse Tree Project Indijika. Latest stock home page.
Fruits de la passion | Initiatives individuelles et collectives
Fruits de la passion. Initiatives individuelles et collectives. Patrimoine,Culture,Cohésion sociale. Communauté d’agglomération Evry Centre Essonne. AMIF & AE Adour-Garonne. CSM & SPF63. MORADIA Casa Taiguara & SPF92. SPF33 Comité de Talence. SPEED Trust & SPF Midi-Pyrénées. Ferme de la Guilbardière. Ferme de la Guilbardière. Hery dans Comité de Solidarité de Madagascar. Admin dans Rémy Pélissier. SETTA dans Rémy Pélissier. Admin dans Rémy Pélissier. Salmon francois 18220 Soulangis dans Rémy Pélissier.
Didier
I’m in the top 5%, Thank u all.Vote 4 me everyday till the 20th 2 b z face of @aboutdotme on a Times Square billboard: http:/ t.co/9G405sr. Posted 6 years ago. Vote for me to be the face of @aboutdotme on a Times Square billboard: http:/ t.co/9G405sr. Posted 6 years ago. Who’s gonna be @ TEDx Beirut Salon Tonight! Posted 6 years ago. 52% of the market share to Android - http:/ t.co/kZCD4yU. Posted 6 years ago. I just unlocked the “Adventurer” badge on @foursquare! Posted 6 years ago. Posted 6 years ago.
Didier Roy
Bonjour tout le monde! Mai 5th, 2007. Didier Roy…n’est pas disponible…. Didier Roy…is not available…. Didier Roy…ist nicht erreichbar…. Posted in Non class. Didier Roy – L’Album. Didier Roy – Le Site. Didier Roy is proudly powered by WordPress.
Didier Stevens | (blog \’DidierStevens)
Tuesday 27 February 2018. 8212; Didier Stevens @ 0:00. For NVISO, I’m providing Wireshark training at BruCON Spring 2018: Wireshark and Lua Programming. In the following video, I show how to add comments to packets and capture files in Wireshark:. Monday 26 February 2018. Quickpost: Using nmap With Tallow (Tor proxy). 8212; Didier Stevens @ 0:00. Here’s how I used nmap with Tallow. On Windows, a transparent Tor proxy:. Tuesday 20 February 2018. Update: pecheck.py Version 0.7.2. Filed under: My Software.
Blog Didik Sudyana
Kisah Perjuangan Menuju Kesuksesan www.didiksudyana.com. Manajemen Investigasi Tindak Kriminal. Uji Forensik Objek Digital. Sabtu, Desember 31, 2016. Tak terasa kita sudah berada dipenghujung tahun 2016. Waktu begitu cepat berlalu. Rasanya seperti. Refleksi Kuliah S2 di UII. Jumat, Desember 30, 2016. Tulisan ini dibuat untuk menjadi arsip tentang selama kuliah di UII ini apa saja yang saya terima. Selasa, Desember 27, 2016. Minggu, Desember 25, 2016. Kamis, November 24, 2016. Kamis, November 24, 2016.
Der Berberich
Feder-Schild-Logo: Inken Meyer, meyola.de. Symbadische Lach- und Sachgeschichten. Follow me on App.net. Powered by Warp Theme Framework.
程序猿DD
在之前的所有Spring Boot和Spring Cloud相关博文中,都会涉及Spring Boot工程的创建。 而创建的方式多种多样,我们可以通过Maven来手工构建或是通过脚手架等方式快速搭建,也可以通过 Spring Boot快速入门 一文中提到的SPRING INITIALIZR页面工具来创建,相信每位读者都有自己最喜欢和最为熟练的创建方式。 在2016年的最后一天,借用Spring Boot的Banner向各位程序猿同仁们问候一声 Happy New Year。 当我们在Spring Cloud应用中使用Consul来实现服务治理时,由于Consul不会自动将不可用的服务实例注销掉 deregister ,这使得在实际使用过程中,可能因为一些操作失误、环境变更等原因让Consul中存在一些无效实例信息,而这些实例在Consul中会长期存在,并处于断开状态。 为Spring Cloud Ribbon配置请求重试 Camden.SR2. Spring Cloud源码分析 二 Ribbon. Spring Cloud构建微服务架构 七 消息总线 续 Kafka. 2017 程序猿DD - 翟永超.
Didobridal Blog
Finding A Prom Dress For 2015 Party. Vote] Dido Music: Whit. Do you know Dido? Have ever heard any song of her? Do you love it? We’ve just uploaded a classic single of Dido, enjoy and vote it to get a chance winning a homecoming dress for free! The details are as follows:. Prom Dresses 2015 Fashi. Find Cheap Bridesmaid D. Are you invited to participate in your friend or sister at her wedding as a bridesmaid? Find Your Perfect Dress. Coupled with the pressure to find a prom dress that is unique, so you can.
SOCIAL ENGAGEMENT