SANS Stormcast Tuesday Mar 18th 2025: Analyzing GUID Encoded Shellcode; Node.js SAML Vuln; Tomcat RCE in the Wild; CSS e-mail obfuscation
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
Vulnerabilities in Cobalt Strike and Node.js XML Crypto Library
This chapter explores recent developments in malware that use Cobalt Strike beacons encoded as UUIDs, featuring an advanced decoding script for better attribution. It also examines a critical vulnerability in the Node.js XML crypto library related to SAML message processing, shedding light on parsing complexities and their security implications.
00:00
Transcript
Play full episode
Remember Everything You Learn from Podcasts
Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.
