Hot Topics

regex

CapLoader 1.9.6

CapLoader 1.9.6 Released

| | 104.21.7.13:80, 104.223.118.109:443, 104.248.81.48:443, 151.236.9.107:443, 159.89.124.188:443, a85be79f7b569f1df5e6087b69deb493, aptekoagraliy, BackConnect XOR, CapLoader, GzipLoader, IcedID, JA3, JA4, joekairbos, lazirusairnaf, Loda, regex, Remcos, seedkraproboy, t13i010400_0f2cb44170f4_1b583af8cc09, t13i010400_0f2cb44170f4_5c4c70b73fa0, ThreatFox, win.loda
CapLoader now detects even more malicious protocols and includes several new features such as JA4 fingerprints, API support for sharing IOCs to ThreatFox and OSINT lookups of malware families on Malpedia. The ...
NETRESEC Network Security Blog
CapLoader 1.8

CapLoader 1.8 Released

| | botnet, CapLoader, DGA, dns, NetFlow, NXRESPONSE, regex, Shifu, SRVFAIL, Stratosphere, StratosphereIPS
We are happy to announce the release of CapLoader 1.8 today! CapLoader is primarily used to filter, slice and dice large PCAP datasets into smaller ones. This new version contains several new ...
NETRESEC Network Security Blog

Explained: regular expression (regex)

| | Business, ddos, Javascript, node.js, redos, regex, search, Server, technology, vulnerability
What is regular expression (regex) and what makes it vulnerable to attack? Learn how to use regex safely and avoid ReDoS attacks in the process. Categories: Business Technology Tags: ddosJavaScriptnode.jsredosregexsearchservervulnerability (Read more...) ...
Malwarebytes Labs
Pony using curl to set: Accept-Encoding: identity, *;q=0

Detecting the Pony Trojan with RegEx using CapLoader

| | Accept-Encoding, curl, EmergingThreats, ids, Malware, malware-traffic-analysis.net, pony, quality factor, regex, regular expressions, rfc2616, rfc7231, snort, Suricata, trojan, video, videotutorial
This short video demonstrates how you can search through PCAP files with regular expressions (regex) using CapLoader and how this can be leveraged in order to improve IDS signatures. Your browser does ...
NETRESEC Network Security Blog
CapLoader 1.7 logo

CapLoader 1.7 Released

| | CapLoader, domain name, dynamic protocol detection, GRE, ICMPv6, IGMP, IP, keyword, OSINT, pcap, regex, Regular expression
We are happy to announce the release of CapLoader 1.7! Here's an overview of what's new in this release: Regular expression searchingLookup of IP addresses using online servicesLookup of domain names using ...
NETRESEC Network Security Blog