Password Patterns In December 2009, a critical data breach in the Internet has been experienced. Around 32 million user passwords of rockyou.com web portal was stolen by a hacker which had used SQL injection for his attack. He got all passwords and made them anonymously (i.e. without usernames) available in the Internet to download. Security experts started analyzing the passwords and Imperva released a study reg..
Web Traffic Analysis with httpry httpry is a tool specialized for the analysis of web traffic. The tool itself can be used to capture traffic (httpry -o file) but other other tools are better suited for that such as tcpdump, Snort, Sguil. When it comes to finding out if certain types of files were downloaded via http, this tool does a super job. It can be used in combination with regular expressions (Regex) to find if a file, a..
Dropper/Agent.97280.D Analysis 1. 개 요 잊을 만하면 한번씩 사회공학기법(Social Engineering)을 이용한 악성코드가 출현했다. 이번에는 첨부파일인 Police.exe를 확인하고 경찰서로 출두하라는 내용과 함께 불특정 다수에게 유포되었는데 아마 메일을 받고 도둑이 제발 저린다고 순간 뜨끔했던 사용자들도 있었을 것이다. 이 문서에서 Dropper/Agent.97280.D(이하 Agent.97280.D)에 대해서 최대한 상세하게 분석해 보자. 2. VirusTotal Scan Result AhnLab-V3 2008.9.23.1 2008.09.23 Dropper/Agent.97280.D AntiVir 220.127.116.11 2008.09.23 TR/Agent.68096 Authentium 18.104.22.168 2008.09.23 W32/SY..