Yacin Nadji – WindowsTechs.com

Telegram Zeek, you’re my main notice

Posted on July 28, 2021 by Yacin Nadji

Notices in Zeek Zeek’s Notice Framework enables network operators to specify how potentially interesting network findings can be reported. This decoupling of detection and reporting highlights Zeek’s flexibility: a notice-worthy event in network A may … Continue reading Telegram Zeek, you’re my main notice→

Detecting Zerologon (CVE-2020-1472) with Zeek

Posted on September 16, 2020 by Yacin Nadji

By Yacin Nadji, Corelight Security Researcher CVE-2020-1472 aka Zerologon, disclosed by Tom Tervoort of Secura, is an illustrative case study of how a small implementation mistake in cryptographic routines cascades into a privilege escalation vulnerabi… Continue reading Detecting Zerologon (CVE-2020-1472) with Zeek→