DrKeithJones.com

Social Media

Categories

  • My Zeek How-To Video Playlist

    Here is a playlist I put together of just my Zeek How-To videos:

  • Zeek Spicy OSPF Packet Analyzer Update – v0.1.4

    An update in the packet analyzer now makes it Zeek v5.2 ready. You can view more here: https://github.com/corelight/zeek-spicy-ospf You can install the latest version with the following command:

  • Vastaamo Compromise Suspect Caught In France

    An update to my blog yesterday: Most notable was the method in which he was caught: But as documented by KrebsOnSecurity in November 2022, security experts soon discovered Ransom Man had mistakenly included an entire copy of their home folder, where investigators found many clues pointing to Kivimäki’s involvement. From that…

  • Animal Hospital Ex-Employee Arrested For Extortion, Cyberstalking

    The ex-employee also left messages on the animal hospital’s work phone, police said. In the messages, Figueroa allegedly said “I vow to tear her kingdom down to rubble,” “She made herself an international target,” “Meet the beast,” and “I’ve got something in motion that can’t be undone.” Text messages left…

  • Detecting A SIM Swapping Attack

    It appears that the perpetrator of the SIM swap abused not only internal knowledge of T-Mobile’s systems, but also a lax password reset process at Instagram. The social network allows users to enable notifications on their mobile phone when password resets or other changes are requested on the account. https://krebsonsecurity.com/2018/05/t-mobile-employee-made-unauthorized-sim-swap-to-steal-instagram-account/ This…

  • My Favorite Free Court Document Resource

    When PACER charges $0.10 per page for everything viewed on their site, including queries, it makes sites like CourtListener worth their weight in gold: https://www.courtlistener.com/ It’s like taking a penny and leaving a penny, but with court documents. – Dr. Jones after saving bank; 2023 CourtListener is a public repository…

  • Extorting Patients of Vastaamo, An Online Psychotherapy Service

    It’s unfortunate the details are scarce on this case, as it would make a good eCrimeBytes episode. A Finnish man was blamed for an attack at an online psychotherapy service named Vastaamo: https://www.databreaches.net/young-finnish-man-detained-in-absentia-over-data-breach-at-vastaamo/ As far as high value targets go, a psychotherapy service holding the deepest darkest secrets of thousands…

  • YouTube Video For How To Connect Zeek To Python Is Up!

    Here is a short video I put together to show how to pass PCAP data from Zeek through Python and back to Zeek. The original instructions I wrote can be found here: How To Connect Zeek To Python Subscribe and like if you would like to see more!

  • How To Connect Zeek To Python

    I was recently asked how to send data from Zeek to Python. After flipping through the Zeek Broker documentation I couldn’t find a good example to reference, so here is my example. The code for this demo is available here: https://github.com/keithjjones/zeek-python-broker-demo The first piece of our source code is the…

  • eCrimeBytes Glossary

    We created a growing glossary for our eCrimeBytes podcasts: