Here is an overview of content I published in November:
Blog posts:
- Quickpost: Portable Power
- 1768 K
- The Qwerty Effect And Passwords
- Update: translate.py Version 2.5.10
- oledump Indicators
- Update: oledump.py Version 0.0.55
- Decrypting With translate.py
- Update: disitool.py Version 0.4
- Update: emldump.py Version 0.0.11
YouTube videos:
Videoblog posts:
SANS ISC Diary entries:
- Wireshark 3.2.8 and 3.4.0 Released
- AV Cleaned Maldoc
- Quick Tip: Extracting all VBA Code from a Maldoc
- oledump’s ! Indicator
- Quick Tip: Extracting all VBA Code from a Maldoc – JSON Format
- Quick Tip: Cobalt Strike Beacon Analysis
- Quick Tip: Using JARM With a SOCKS Proxy
- Decrypting PowerShell Payloads (video)
Didier Stevens 
Leave a Reply (comments are moderated)