tag:blogger.com,1999:blog-4088979.post4766792318397861275..comments2023-10-16T06:06:25.012-04:00Comments on TaoSecurity Blog: Mandiant APT1 Report: 25 Best Commentaries of the Last 12 DaysRichard Bejtlichhttp://www.blogger.com/profile/13512184196416665417noreply@blogger.comBlogger4125tag:blogger.com,1999:blog-4088979.post-79077033729345389922013-05-29T11:48:49.892-04:002013-05-29T11:48:49.892-04:00And another I found useful.
http://www.joshd.ca/c...And another I found useful.<br /><br />http://www.joshd.ca/content/making-mandiant-apt1-intel-actionable-using-splunk<br /><br />Thanks RichardAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-4088979.post-88359234910504661902013-03-12T16:14:29.184-04:002013-03-12T16:14:29.184-04:00Hi Richard,
I think that publishing SSL certifica...Hi Richard,<br /><br />I think that publishing SSL certificates used by the APT1 malware was great idea.<br /><br />Could Mandiant release APT1 SSL certificates (from appendix F) in PEM format or at least provide fingerprints (md5, sha1) for published certificates? I would like to add capability to detect those certificates by the Nmap network scanner but to do this I need at least sha1 fingerprints. AFAIK converting certificates from text format (format in which APT1 certificates are now available) to PEM is quite complicated.<br /><br />Thanks in advance.<br /><br />Mariuszmzethttps://www.blogger.com/profile/16267972422564717425noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-64240754568272651322013-03-06T11:16:54.523-05:002013-03-06T11:16:54.523-05:00Thanks Kevin, fixed.Thanks Kevin, fixed.Richard Bejtlichhttps://www.blogger.com/profile/13512184196416665417noreply@blogger.comtag:blogger.com,1999:blog-4088979.post-71562449098063420672013-03-06T08:43:28.285-05:002013-03-06T08:43:28.285-05:00Hi Richard,
Thanks for listing the Secure Ideas b...Hi Richard,<br /><br />Thanks for listing the Secure Ideas blog on this. I just wanted to make one correction, it was not written by me (Kevin Johnson) but by Jason Wood, one of our consultants.<br /><br />Thanks<br />KevinAnonymoushttps://www.blogger.com/profile/08062319461773936036noreply@blogger.com