Hello, welcome to the Friday, May 31st, 2019 edition of the San Antonio Storm Center's Stormcast.

My name is Johannes Ulrich, and I'm recording from San Antonio, Texas.

If you're looking for something to do this weekend, the day has a great introduction into SC debug.

That's a debugger that allows you to analyze Windows

shell code. A couple interesting features that he's going over in his post today. For example,

with SCDBug, you're able to redirect TCP connections and also file accesses.

So this way if you have malware that is trying to connect to an external server, you can set up your own server and then via SCDBug, redirect the connection to your own server.

Today is going through the entire process including how to extract the shell code from a

PowerShell script and how to convert it into a form that's suitable for a CDBug,

and then how to step through the code and use these features like redirecting TCP connections.

GitHub for a while now has offered a security feature

that alerts GitHub repositories, if any dependencies that the repository is using,

have been affected by security vulnerabilities. This has been available for a selected

number of languages I believe Ruby, Python and JavaScript are included at this point.

Now GitHub is expanding this feature at this point in beta with automatic security patches. Now the way this will

work is that if you opt in for this feature which of course requires that you are already

using the dependency craft to figure out what other projects your project depends on then GitHub

will automatically create a poll request whenever there is a security update

for anything that you would depend on so it's not automated in the way that it

will automatically apply these patches you still have to apply the pull request.

That's of course also the safe way of doing it because these changes could of course cause problems for some projects.

In order to minimize the risks, these pull requests will focus on the security fix, so they will

...