Here is an overview of content I published in March:
Blog posts:
- Update: pdf-parser.py Version 0.7.1
- Analyzing a Phishing PDF with /ObjStm
- Update: re-search.py Version 0.0.13
- Update: oledump.py Version 0.0.42
- Maldoc: Excel 4.0 Macro
- Quickpost: PDF Tools Download Feature
- Update: pecheck.py Version 0.7.6
YouTube videos:
Videoblog posts:
SANS ISC Diary entries:
- Quick and Dirty Malicious HTA Analysis
- Wireshark 3.0.0 and Npcap
- Tip: Ghidra & ZIP Files
- Maldoc: Excel 4.0 Macros
- Video: Maldoc Analysis: Excel 4.0 Macro
- Wireshark 3.0.0 and Npcap: Some Remarks
- “VelvetSweatshop” Maldocs
- Decoding QR Codes with Python
- “VelvetSweatshop” Maldocs: Shellcode Analysis
- “404” is not Malware
Didier Stevens 
Leave a Reply (comments are moderated)