DOCSLIB.ORG

Securetransport 5.3.0 Developer's Guide 3 Installing External Agents 31 External Agent Examples 32 Mail Notification on File Receipt 32 Permissions 33

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

SecureTransport Version 5.3.0 3 April 2019 Developer's Guide Copyright © 2015 Axway All rights reserved. This documentation describes the following Axway software: Axway SecureTransport 5.3.0 No part of this publication may be reproduced, transmitted, stored in a retrieval system, or translated into any human or computer language, in any form or by any means, electronic, mechanical, magnetic, optical, chemical, manual, or otherwise, without the prior written permission of the copyright owner, Axway. This document, provided for informational purposes only, may be subject to significant modification. The descriptions and information in this document may not necessarily accurately represent or reflect the current or planned functions of this product. Axway may change this publication, the product described herein, or both. These changes will be incorporated in new versions of this document. Axway does not warrant that this document is error free. Axway recognizes the rights of the holders of all trademarks used in its publications. The documentation may provide hyperlinks to third-party web sites or access to third-party content. Links and access to these sites are provided for your convenience only. Axway does not control, endorse or guarantee content found in such sites. Axway is not responsible for any content, associated links, resources or services associated with a third-party site. Axway shall not be liable for any loss or damage of any sort associated with your use of third-party content. Contents Preface 8 Who should read this document 8 Related documentation 8 Get more help 9 Training 10 Accessibility 11 Documentation accessibility 11 Keyboard-only navigation 11 Screen reader support 11 Support for high contrast and accessible use of colors 11 1 Overview 12 2 Customizing SecureTransport 13 About customization 13 Transaction Manager 14 When to customize 14 How rules work 15 Conditions 15 Actions 15 Precedence 16 Using NextPrecedence 16 SecureTransport built-in rules packages 16 Custom rules 18 Using built-in agents 21 NextPrecedence 21 Continue 23 SetExitValue 24 SecureTransport Software Development Kit 25 SecureTransport APIs 25 Sample agents and applications 26 3 Developing external agents 27 External agent overview 27 Developing and triggering external agents 27 Calling interface 28 Running external agents 29 Chaining external agents 30 Axway SecureTransport 5.3.0 Developer's Guide 3 Installing external agents 31 External agent examples 32 Mail notification on file receipt 32 Permissions 33 4 Developing in-process agents 34 Developing in-process agents overview 34 Creating in-process agents 35 Agent creation at a glance 35 In-process agent interface 36 Installing in-process agents 37 In-process agent examples 38 Installing the examples 38 Mail notification on file receipt 39 Denying permission to upload specific file types 41 Deleting a file after it is transferred to a destination 42 About the Transaction Manager API 43 BaseAgent class 43 Events class 45 Logging 46 5 Using the application framework 47 About the application framework 47 Using the application framework or custom rules 48 Key terms 49 Application framework classes and interfaces 50 Pluggable UI overview 54 Custom JSP files 54 Implementing data handlers 57 Creating custom applications 62 Defining application settings 63 Defining subscription settings 65 Defining application agents 66 ApplicationRuntime interface 67 Using ApplicationManager 69 Custom attributes 71 Post-transfer actions 72 Certificate Manager 73 CertificateReference 74 CertificateDetails 74 CertificateManager 75 Working with AccountManager 76 Working with transfer sites 78 Working with template accounts 80 Axway SecureTransport 5.3.0 Developer's Guide 4 Working with business units 81 Example 81 Working with data transformations 82 Data transformation overview 82 Developing data transformation modules 83 Installing transformation modules 88 Transformation example 88 Working with ConfigurationManager 88 Working with InvocationManager 91 Utility script: option_value_change 92 ChangeConfigurationOption.java 93 DefaultResult.java 97 OptionValueChangeInvocableTask.java 99 Working with NavigationManager 101 Working with ServiceCheck 104 Working with ClusteredManager 105 6 Working with event types 106 Authentication and session management events 106 Sessions 107 Certificate Verification event 108 User Configuration event 110 Password Authentication event 114 Login event 116 Logout event 116 SessionEnd event 117 File transfer authorization and audit events 117 Incoming Start event 118 Incoming End event 119 Incoming Error event 120 Incoming Abort event 120 Outgoing Start event 121 Outgoing End event 122 Outgoing Error event 122 Outgoing Abort event 123 File transfer upload and download events 123 FTP Cmd - STOR event 124 FTP Cmd - RETR event 125 FTP Cmd - REST event 126 FTP Cmd - MDTM event 126 FTP Cmd - SIZE event 127 FTP Cmd - RTCK event 128 File and directory management events 129 FTP Cmd - LIST event 130 Axway SecureTransport 5.3.0 Developer's Guide 5 FTP Cmd - NLST event 132 FTP Cmd - CWD event 133 FTP Cmd - DELE event 134 FTP Cmd - MKD event 135 FTP Cmd - PWD event 135 FTP Cmd - RMD event 136 FTP Cmd - RNFR event 136 FTP Cmd - RNTO event 137 FTP Cmd - CHMOD event 138 FTP Cmd - MIRR event 139 Server extension events 139 HTTP Cmd - POST event 139 FTP Cmd - SITE event 140 Application framework events 140 Application - Init event 140 Application - Schedule event 141 Application - Incoming event 142 Server-initiated transfer events 142 Server Transfer - Pull event 143 Server Transfer - Push event 143 Schedule event 144 Environment variables 144 Exit codes 145 Transformation event 145 Environment variables 145 Exit codes 145 Password Change event 146 FTP Cmd - CHPWD event 146 Arguments 146 Exit codes 146 PeSIT transfer state coordination events 147 PeSIT Pause event 147 PeSIT Resume event 148 PeSIT SaveMap event 148 PeSIT GetMap event 148 PeSIT ClearMap event 149 PeSIT Ack event 149 Mailbox folder event 149 PMfolderSummary event 150 Environment variable 150 Exit codes 150 Output stream 150 Address book events 150 AddressBook - CreateContact event 151 Axway SecureTransport 5.3.0 Developer's Guide 6 AddressBook - DeleteContact event 151 AddressBook - RetrieveContact event 152 AddressBook – UpdateContact event 153 7 Using environment variables 155 Predefined environment variables 155 Common environment variables 155 Session environment variables 156 Application framework object environment variables 159 Additional environment variables 168 LDAP session state variables 173 Adding custom environment variables 174 Displaying custom environment variables 175 8 File services interface 177 File services interface introduction 177 Registering a file services interface protocol 177 Example 179 Enabling PeSIT message parameters 180 Standard file services interface connectors 180 FileServicesInterfaceScriptBasedConnector 181 FileServicesInterfaceFileBasedConnector 182 Implementing a file services interface connector 184 9 REST API 185 REST API overview 185 REST API examples 186 Create an account 186 Push a file 209 Custom HTML template 211 Java file transfer library 218 Appendix A: Agent execution order 224 Client-initiated transfers 224 Server-initiated transfers 225 Appendix B: Developing condition functions 226 Condition functions overview 226 Condition functions 226 File content search example 226 Installing condition functions 227 Axway SecureTransport 5.3.0 Developer's Guide 7 Preface The SecureTransport Developer's Guide describes the components and tasks associated with customizing the Axway SecureTransport Server. It provides background, conceptual, and procedural information for creating and modifying rules, including creating agents. Before implementing the tasks described in this manual, make sure that SecureTransport is installed as described in the SecureTransport Installation Guide. Who should read this document This guide is intended for developers who create customizations for SecureTransport. Developers can use a scripting language such as Perl or Python to create external agents or Java to create in- process agents when customizing SecureTransport. Some topics cover information dealing with system administration connected with customization. Related documentation SecureTransport provides the following documentation: l SecureTransport Installation Guide – This guide explains how to install, upgrade, and uninstall SecureTransport Server on UNIX-based platforms, Microsoft Windows, and Axway Appliances. l SecureTransport Getting Started Guide – This guide explains the initial setup and configuration of SecureTransport using the SecureTransport Administrator setup interface. l SecureTransport Administrator's Guide – This guide describes how to use the SecureTransport Administration Tool to configure and administer your SecureTransport Server. The content of this guide is also available in the Administration Tool online help. l SecureTransport Web Client User Guide – This guide describes how to use the SecureTransport Browser Client and Web Access Plus to transfer files between your local machine and your SecureTransport Server. The Web Access Plus content of this guide is also available in the Web Access Plus online help. l SecureTransport Release Notes – This document contains information about new features and enhancements, late-breaking information that could not be included in one of the other documents, and a list of known and fixed issues. l SecureTransport Developer's Guide – (This
Recommended publications
  • Ecaccess User Guide

    Ecaccess User Guide

    ECaccess User Guide User Support Operations Department Version 3.3.0 May 2009 c Copyright 2009 European Centre for Medium-Range Weather Forecasts Shinfield Park, Reading, RG2 9AX, United Kingdom Literary and scientific copyrights belong to ECMWF and are reserved in all countries. The information within this publication is given in good faith and considered to be true, but ECMWF accepts no liability for error, omission and for loss or damage arising from its use. CONTENTS Contents 1 Introduction 3 2 Ecaccess concepts 4 2.1 ECaccess gateway ......................................... 4 2.2 Using an ECaccess gateway ................................... 5 2.3 Plugins ............................................... 5 3 Security authentication 7 3.1 ECaccess certificate ........................................ 7 3.2 ECcert command ......................................... 7 4 Unattended file transfers initiated from ECMWF 10 4.1 Target location ........................................... 10 4.2 ECtrans command ......................................... 11 4.2.1 Transfer to a Member State host via gateway ....................... 12 4.2.2 Transfer from a Member State host via gateway ...................... 12 5 Shell commands 14 5.1 Environment ............................................ 14 5.2 Access to Shell commands .................................... 15 5.3 General information ........................................ 15 5.4 File management ......................................... 15 5.5 Batch job management .....................................
  • Tokenvator Release 3 Written by Alexander Polce Leary | July 22, 2021 Tokenvator Release 3 Is a Long Overdue Update That Includes a Major Overhaul to the Tool

    Tokenvator Release 3 Written by Alexander Polce Leary | July 22, 2021 Tokenvator Release 3 Is a Long Overdue Update That Includes a Major Overhaul to the Tool

    Tokenvator Release 3 written by Alexander Polce Leary | July 22, 2021 Tokenvator Release 3 is a long overdue update that includes a major overhaul to the tool. From the user interface, it will be mostly familiar with some command line tweaks. Under the surface, large portions of the code base have been reworked, and parts of the base have had some updates. In this series, we will go over some of the changes and new features added. Teaser Alert: Adding Privileges & Creating Tokens Improvements First and foremost, the user interface. Historically, every action had a series of positional arguments that were clunky and generally difficult to remember. They were also not very flexible, and as the commands started to have more, and additional optional arguments, they became completely unwieldy. These have been replaced with flags that will auto complete. For instance, to list and enable privileges: This also works in the non-interactive mode (though it won’t tab complete – sorry, it’s Windows): Additionally, the scroll back function was improved and numerous bugs were resolved. For instance, now when you press up you will always go to the last command issued. A printable command history has also been added if you want to copy and paste instead or keep a log of your actions. The info functionality was improved again, removing many bugs and adding additional information, such as impersonation contexts: (Tokens) > whoami [*] Operating as NT AUTHORITY\SYSTEM (Tokens) > info [*] Primary Token [+] User: S-1-5-21-258464558-1780981397-2849438727-1001
  • Oracle® Database Administrator's Reference

    Oracle® Database Administrator's Reference

    Oracle® Database Administrator's Reference 18c for Microsoft Windows E83889-01 August 2018 Oracle Database Administrator's Reference, 18c for Microsoft Windows E83889-01 Copyright © 1996, 2018, Oracle and/or its affiliates. All rights reserved. Primary Authors: Tanaya Bhattacharjee, Sunil Surabhi, Mark Bauer Contributing Authors: Lance Ashdown Contributors: Alexander Key, Sivaselvam Narayanasamy, Ricky Chen, David Collelo, David Friedman, Prakash Jashnani, Sue K. Lee, Rich Long, Satish Panchumarthy, Ravi Thammaiah, Michael Verheij This software and related documentation are provided under a license agreement containing restrictions on use and disclosure and are protected by intellectual property laws. Except as expressly permitted in your license agreement or allowed by law, you may not use, copy, reproduce, translate, broadcast, modify, license, transmit, distribute, exhibit, perform, publish, or display any part, in any form, or by any means. Reverse engineering, disassembly, or decompilation of this software, unless required by law for interoperability, is prohibited. The information contained herein is subject to change without notice and is not warranted to be error-free. If you find any errors, please report them to us in writing. If this is software or related documentation that is delivered to the U.S. Government or anyone licensing it on behalf of the U.S. Government, then the following notice is applicable: U.S. GOVERNMENT END USERS: Oracle programs, including any operating system, integrated software, any programs installed on the hardware, and/or documentation, delivered to U.S. Government end users are "commercial computer software" pursuant to the applicable Federal Acquisition Regulation and agency- specific supplemental regulations. As such, use, duplication, disclosure, modification, and adaptation of the programs, including any operating system, integrated software, any programs installed on the hardware, and/or documentation, shall be subject to license terms and license restrictions applicable to the programs.
  • Argus Research (July 2020)

    Argus Research (July 2020)

    EQUITY RESEARCH REPORT July 13, 2020 MOLECULAR DATA INC. (NCM: MKD) Founded in 2013, China-based Molecular Data operates an e-commerce platform that KEY STATISTICS connects and serves participants of the Chinese chemicals industry across the value chain. Key Stock Statistics COMPANY HIGHLIGHTS Recent price (7/7/20) $2.40 * MKD: Connecting China’s Chemical Industry Value Chain 52 week high/low $11.80/$0.57 ADS Outstanding (M) 115 * In our view, Molecular Data has assembled a comprehensive network that can capture value across multiple previous pain points in China’s fragmented chemicals industry. Market cap (M) $276.0 Dividend Nil * After several years of organically building platform capabilities to include financial services, warehousing, logistics and software as a service (SaaS) offerings, Molecular Yield Nil Data should now be able to diversify its revenue stream beyond its core chemical direct e-commerce sales. This should lead to enhanced profit margins and, ultimately, sustainable Sector Overview profitability. Sector Materials * At the end of 2019, Molecular Data completed an initial public offering that yielded net Sector % of S&P 500 2.5% proceeds of approximately $55 million. As a result, we view the company as well posi- tioned to invest in its integrated e-commerce platform with new higher-margin services, and to pursue the acquisition of new capabilities and services globally. Financials ($M) * Although we expect near-term financial results to be impacted by the COVID-19 outbreak, Cash & Mkt Securities 8.3 which forced many customers and suppliers to halt operations throughout the first half of Debt 2.0 2020, we are encouraged by continued robust traffic on the Molbase platform.
  • Openvms: an Introduction

    Openvms: an Introduction

    The Operating System Handbook or, Fake Your Way Through Minis and Mainframes by Bob DuCharme VMS Table of Contents Chapter 7 OpenVMS: An Introduction.............................................................................. 7.1 History..........................................................................................................................2 7.1.1 Today........................................................................................................................3 7.1.1.1 Popular VMS Software..........................................................................................4 7.1.2 VMS, DCL................................................................................................................4 Chapter 8 Getting Started with OpenVMS........................................................................ 8.1 Starting Up...................................................................................................................7 8.1.1 Finishing Your VMS Session...................................................................................7 8.1.1.1 Reconnecting..........................................................................................................7 8.1.2 Entering Commands..................................................................................................8 8.1.2.1 Retrieving Previous Commands............................................................................9 8.1.2.2 Aborting Screen Output.........................................................................................9
  • Process Explorer Copyright © 1996-2012 Mark Russinovich Sysinternals

    Process Explorer Copyright © 1996-2012 Mark Russinovich Sysinternals

    Process Explorer Copyright © 1996-2012 Mark Russinovich Sysinternals - www.sysinternals.com Process Explorer is an advanced process management utility that picks up where Task Manager leaves off. It will show you detailed information about a process including its icon, command-line, full image path, memory statistics, user account, security attributes, and more. When you zoom in on a particular process you can list the DLLs it has loaded or the operating system resource handles it has open. A search capability enables you to track down a process that has a resource opened, such as a file, directory or Registry key, or to view the list of processes that have a DLL loaded. The Process Explorer display consists of two sub-windows. The top always shows a list of the currently active processes, including the names of their owning accounts, whereas the information displayed in the bottom window, which you can close, depends on the mode that Process Explorer is in: if it is in handle mode you will see the handles that the process selected in the top window has opened; if Process Explorer is in DLL mode you will see the DLLs and memory-mapped files that the process has loaded. Process Explorer also has a powerful search capability that will quickly show you which processes have particular handles opened or DLLs loaded. The unique capabilities of Process Explorer make it useful for tracking down DLL-version problems or handle leaks, and provide insight into the way Windows and applications work. You can obtain equivalent command-line tools, Handle and ListDLLs, at the Sysinternals Web site.
  • Supplementary Material for Traditional Agricultural Practices and the Sex Ratio Today Alberto Alesina1,2, Paola Giuliano3,2,*, Nathan Nunn1,2

    Supplementary Material for Traditional Agricultural Practices and the Sex Ratio Today Alberto Alesina1,2, Paola Giuliano3,2,*, Nathan Nunn1,2

    Supplementary Material for Traditional agricultural practices and the sex ratio today Alberto Alesina1,2, Paola Giuliano3,2,*, Nathan Nunn1,2 1 Harvard University. 2 NBER. 3 UCLA. *Correspondence to: [email protected] The Supplementary Material provides details on the data sources and the robustness of the analysis for the results derived in the paper. Additional details on the Ethnographic Atlas The Ethnographic Atlas was constructed by George Peter Murdock. It contains ethnographic information for 1,265 ethnic groups worldwide. The period in which the information was collected varies by ethnicity, with the earliest observation dates coming from ethnicities in the Old World (where early written evidence is available) and the most recent information dating around the 20th century, for those parts of the world without a written history and directly observed by anthropologists. All societies are observed prior to industrialization. In total, 23 ethnicities are observed during the 17th century or earlier, 16 during the 18th century, 310 during the 19th century, 876 between 1900 and 1950, and 31 after 1950. For nine ethnicities, an exact year is not provided. The variable v39 classifies each ethnic group as being in one of the following three categories: (1) the plough was absent, (2) the plough existed at the time the group was observed, but it was not aboriginal, and (3) the plough was aboriginal, having existed prior to contact. Using this information, we construct an indicator variable that equals one if the plough was ever adopted during the pre-industrial period (whether aboriginal or not) and zero otherwise. Of the 1,156 ethnicities for which information exists, for 997 the plough was absent, for 141 the plough was adopted (and aboriginal), and for 18 it was adopted, but after European contact.
  • Resource Management: Linux Kernel Namespaces and Cgroups

    Resource Management: Linux Kernel Namespaces and Cgroups

    Resource management: Linux kernel Namespaces and cgroups Rami Rosen [email protected] Haifux, May 2013 www.haifux.org 1/121 http://ramirose.wix.com/ramirosen TOC Network Namespace PID namespaces UTS namespace Mount namespace user namespaces cgroups Mounting cgroups links Note: All code examples are from for_3_10 branch of cgroup git tree (3.9.0-rc1, April 2013) 2/121 http://ramirose.wix.com/ramirosen General The presentation deals with two Linux process resource management solutions: namespaces and cgroups. We will look at: ● Kernel Implementation details. ●what was added/changed in brief. ● User space interface. ● Some working examples. ● Usage of namespaces and cgroups in other projects. ● Is process virtualization indeed lightweight comparing to Os virtualization ? ●Comparing to VMWare/qemu/scaleMP or even to Xen/KVM. 3/121 http://ramirose.wix.com/ramirosen Namespaces ● Namespaces - lightweight process virtualization. – Isolation: Enable a process (or several processes) to have different views of the system than other processes. – 1992: “The Use of Name Spaces in Plan 9” – http://www.cs.bell-labs.com/sys/doc/names.html ● Rob Pike et al, ACM SIGOPS European Workshop 1992. – Much like Zones in Solaris. – No hypervisor layer (as in OS virtualization like KVM, Xen) – Only one system call was added (setns()) – Used in Checkpoint/Restart ● Developers: Eric W. biederman, Pavel Emelyanov, Al Viro, Cyrill Gorcunov, more. – 4/121 http://ramirose.wix.com/ramirosen Namespaces - contd There are currently 6 namespaces: ● mnt (mount points, filesystems) ● pid (processes) ● net (network stack) ● ipc (System V IPC) ● uts (hostname) ● user (UIDs) 5/121 http://ramirose.wix.com/ramirosen Namespaces - contd It was intended that there will be 10 namespaces: the following 4 namespaces are not implemented (yet): ● security namespace ● security keys namespace ● device namespace ● time namespace.
  • Understanding Windows Lateral Movements

    Understanding Windows Lateral Movements

    Understanding Windows Lateral Movements ATTL4S & ElephantSe4l # ATTL4S • Daniel López Jiménez (a.k.a. ATTL4S) • Twitter: @DaniLJ94 • GitHub: @ATTL4S • Youtube: ATTL4S • Loves Windows and Active Directory security • Senior Security Consultant at NCC Group • Associate Teacher at Universidad Castilla-La Mancha (MCSI) Confs: NavajaNegra, No cON Name, h-c0n, Hack&Beers Posts: Crummie5, NCC Group’s blog, Hackplayers Certs: CRTO, PACES, OSCP, CRTE www.crummie5.club # ElephantSe4l • Godlike Programmer and Elephant Seal • Twitter: @ElephantSe4l • GitHub: @ElephantSe4l • Very curious, he enjoys understanding complex and weird things • Mind behind all the low-level contents of my talks This has been written by ATTL4S www.crummie5.club WWW.CRUMMIE5.CLUB www.crummie5.club The goal of this talk is understanding how to perform lateral movements in Windows and Active Directory environments by comprehending the art of user impersonation www.crummie5.club Credential theft │ Password │ Hash │ Token UserA UserB HostA UserB HostB Agenda 1. Ways of Authentication 2. Authentication Packages 3. Logon Sessions 4. Access Tokens 5. User Impersonation 6. Let’s Move www.crummie5.club Ways of Authentication www.crummie5.club [SAM] : Local Auth [NTDS] : Domain Auth HostA DC [SAM] HostA\UserA [SAM] HostA\UserB [NTDS] Corp\DomainUserA HostB [NTDS] Corp\DomainUserB Remote Authentications • We don’t (usually) care about physical authentications • We care about remote authentications and they require privileges • Being a local user in a system doesn’t mean you have privileges
  • Run a Program Under Administrator Privilege

    Run a Program Under Administrator Privilege

    Knowledgebase Article Run a program under Administrator privilege © Copyright 2001-2012 EMCO Software Company web site: emcosoftware.com Support telephone: +44 20 3287-7651 Support email: [email protected] +1 646 233-1163 Knowledgebase Article Run a program under Administrator privilege 2 Run a program under Administrator privilege In this tutorial we will show you how to execute a program under another user rights to gain more access if you don't have it from your current user logon. Some of our programs require Administrator rights to the remote computer to perform correctly, and the most common support questions we get are because the user that is using our product's does not have the required privilege needed for the program to perform the way it should be!. About the RunAs feature The RunAs feature allows you to run any program under another user account rights. Think about it... if you are not a full member of the Administrator group on the computer you are logged into and have a need to run a program as the administrator user you can use the RunAs feature any time you want. But of course you need to know the password for the administrator or the user you want to use for the RunAs function. There are many ways to use and access the RunAs feature, and we will write about two of them here in this short tutorial. emcosoftware.com © Copyright 2001-2012 EMCO Software Knowledgebase Article Run a program under Administrator privilege 3 Using RunAs from the command line, Cmd.exe From the screenshot below you can see how we access this feature easily by writing just the RunAs.exe as the filename into the Cmd.exe dialog.
  • Lazarus Under the Hood Kaspersky Lab Global Research and Analysis Team Executive Summary

    Lazarus Under the Hood Kaspersky Lab Global Research and Analysis Team Executive Summary

    Lazarus Under The Hood Kaspersky Lab Global Research and Analysis Team Executive Summary The Lazarus Group’s activity spans multiple years, going back as far as 2009. Its malware has been found in many serious cyberattacks, such as the massive data leak and file wiper attack on Sony Pictures Entertainment in 2014; the cyberespionage campaign in South Korea, dubbed Operation Troy, in 2013; and Operation DarkSeoul, which attacked South Korean media and financial companies in 2013. There have been several attempts to attribute one of the biggest cyberheists, in Bangladesh in 2016, to Lazarus Group. Researchers discovered a similarity between the backdoor used in Bangladesh and code in one of the Lazarus wiper tools. This was the first attempt to link the attack back to Lazarus. However, as new facts emerged in the media, claiming that there were at least three independent attackers in Bangladesh, any certainty about who exactly attacked the SWIFT systems, and was behind one of the biggest ever bank heists in history, vanished. The only thing that was certain was that Lazarus malware was used in Bangladesh. However, considering that we had previously found Lazarus in dozens of different countries, including multiple infections in Bangladesh, this was not very convincing evidence and many security researchers expressed skepticism abound this attribution link. This paper is the result of forensic investigations by Kaspersky Lab at banks in two countries far apart. It reveals new modules used by Lazarus group and strongly links the SWIFT system attacking tools to the Lazarus Group’s arsenal of lateral movement tools. Considering that Lazarus Group is still active in various cyberespionage and cybersabotage activities, we have segregated its subdivision focusing on attacks on banks and financial manipulations into a separate group which we call Bluenoroff (after one of the tools they used).
  • HP ESA-L1500A Spectrum Analyzer Programmer's Guide

    HP ESA-L1500A Spectrum Analyzer Programmer's Guide

    Programmer’s Guide HP ESA-L1500A Spectrum Analyzer HEWLETT@’ r!!a PACKARD HP Part No. E4411-90003 Printed in USA January 1997 0 Copyright Hewlett-Packard Company 1997. All Rights Reserved. Reproduction, adaptation, or translation without prior written permission is prohibited, except as allowed under the copyright laws. 1400 Fountaingrove Parkway, Santa Rosa CA, 95403-1799, USA The information contained in this document is subject to change without notice. Hewlett-Packard makes no warranty of any kind with regard to this material, in- cluding but not limited to, the implied warranties of merchantability and fitness for a particular purpose. Hewlett-Packard shall not be liable for errors contained herein or for incidental or consequential damages in connection with the furnishing, per- formance, or use of this material. The following safety symbols are used throughout this manual. Familiarize your- self with the symbols and their meaning before operating this instrument. CAUTION Caution denotes a hazard. It calls attention to a procedure that, if not correctly performed or adhered to, would result in damage to or destruction of the instrument. Do not proceed beyond a caution until the indicated conditions are fully understood and met. WARNING: Warning denotes a hazard. It calls attention to a procedure which, if not correctly performed or adhered to, could result in injury or loss of life. Do not proceed beyond a warning note until the indicated conditions are fully understood and met. WARNING: This is a Safety Class 1 Product (provided with a protective earthing ground incorporated inthe power cord). The mains plug shall only be inserted in a socket outlet provided with a protective earth contact.