ISC StormCast for Monday, November 14th, 2022
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
SANS ISC Handlers
4.9 • 754 Ratings
🗓️ 14 November 2022
⏱️ 6 minutes
🧾️ Download transcript
Summary
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hello and welcome to the Monday, November 14th, 2020 edition of the Sandstone Storm Center's |
| 0:08.1 | Stormcast. My name is Johannes Ulrich and the time recording from Jacksonville, Florida. |
| 0:14.6 | In this weekend's Diary, DDA, yet again, looks at Cyber Chef and how to do new and interesting things with Cyber Chef in this particular case analyzing, well, pretty much sort of standard CISLog data. |
| 0:30.1 | He calls it log format. |
| 0:31.7 | If you ever looked, for example, at IPTables log in CISLog, you will sort of recognize this format where you have sort of a field |
| 0:40.0 | value equals and then the actual value going with that field name. Now the trick here that |
| 0:47.8 | the use with Cyber Chef is how do you actually analyze large amounts of data inside the browser? And what DDA does is he actually |
| 0:58.5 | uploads a zip file, then has Cyber Chef unsip it, and then analyze it. Personally, I'll probably |
| 1:06.2 | stick with tools like cut and crep for these kind of logs, but interesting approach in |
| 1:12.5 | particular, the idea of processing larger files in Cybershift. By the way, if you ever want |
| 1:18.5 | to stuff about the privacy issues with Cyber Chef, you can actually run it pretty easily |
| 1:24.4 | on-premise, so to speak, by just downloading the JavaScript. |
| 1:28.5 | And if you are using Cybershift from the GitHub site, everything should run in your browser. |
| 1:37.2 | Anyway, in a couple of weeks, the Soccer World Cup will be taking off. And with that, of course, there are already a couple of sort of security related issues around this. |
| 1:52.5 | First of all, if you are actually going to Qatar in order to visit any of the live games. There are some interesting COVID-19 tracking and |
| 2:03.8 | ticket applications that you need to download. Usually recommend it to install things like this on |
| 2:10.4 | a burner phone. Also, there are already a number of scams going around according to some new |
| 2:16.2 | sites, like, for example, fake ticket |
| 2:19.5 | scams, lottery scams, and the like. Well, as usual, any big event like this is going to |
| 2:26.4 | attract some scammers fishing and malicious emails and all of the good stuff. So be careful |
| 2:33.7 | and maybe good in particular if you're living in a country that is more |
| 2:38.2 | into soccer or football to actually do a little awareness email or session about the risks |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from SANS ISC Handlers, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of SANS ISC Handlers and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.