내가 좋아할 만한 콘텐츠
#AllYourTorrentsBelongToUs #malware #torrent All Your Torrents Belong To Us reversingminds-blog.logdown.com/posts/7821320-…
Unit 42 shares a step-by-step guide to cloud incident response. Learn how cloud investigations differ from traditional incidents, focusing on identities, misconfigurations and service interactions. bit.ly/46JEbxn
Elastic Security Labs introduces nightMARE, a versatile Python library for malware analysis, featuring static analysis tools and configuration extractors for various malware families, now available in version 0.16. #MalwareAnalysis #PythonLibrary elastic.co/security-labs/…
Unit 42 recently responded to a ransomware incident involving BlackSuit at a manufacturing client. This event illustrates how a single compromised VPN credential, obtained through a vishing attack, can lead to significant operational impact. bit.ly/42DUrO3
📡New blog about my talk "CTI: The Dark Cloak" where we explore how #intel teams collaborate to tackle real #TA 🕵️♂️ We analyze threats from #CTI, assisting other teams such as #TH and #DFIR, extracting max value from every piece of info 🔗Blogpost: rexorvc0.com #RE
Unit 42 presents a proof of concept on indirect prompt injection in AI agents. This method can store malicious instructions in an agent's memory, affecting future interactions. bit.ly/3L2ppcs
We at @emproofsecurity open-sourced a free firmware reverse engineering workshop for self-study. Topics: ELF analysis, cracking, malware triage, embedded-Linux, bare-metal, crypto-key extraction, anti-analysis. Docker setup and solutions included. github.com/emproof-com/wo…
🚀 We are proud to announce the availability of Threatray Release v2.1, bringing an exciting set of additions and improvements to the platform. 🤝 We’ve partnered with @nextronsystems, a pioneer in YARA and Sigma rule detection, to bring their industry-leading detection…
Relocatable - Write C-code that will be directly compiled into raw shellcode, which can be loaded into any process without the need for tools such as Donut or sRDI github.com/tijme/relocata…
Ever wondered how Process Explorer builds the process tree? I wrote a guide on how to code your own in C++. We cover PID reuse, parent vs. creator, recursion, and more. Read it here: trainsec.net/library/window…
Nice in-depth research! We took a look at the same loader a while back and shared a YARA rule to track it: threatray.com/blog/a-net-mul…
I updated the #Rhadamanthys custom format converter (for XS modules), to support the latest version (0.9.x): github.com/hasherezade/hi…
#ESETresearch has mapped the labyrinth of #AsyncRAT forks, identifying the most prevalent versions of this open-source malware. While some variants are mere curiosities, others pose a more tenacious threat. welivesecurity.com/en/eset-resear… 1/7
In May 2025, #ESET participated in operations that largely disrupted the infrastructure of two notorious infostealers: #LummaStealer and #Danabot. 1/6
⚡ Exciting Update ⚡ We're thrilled to announce our new partnership with @nextronsystems to take YARA rule development and malware classification to a whole new level. 🚀 This collaboration brings Nextron's high-quality YARA rules from THOR Thunderstorm directly into…
My hot take on AI 🌶️. It's less about efficincy and more about scale. byt3bl33d3r.substack.com/p/ai-doesnt-ma…
Threatray's @_n1ghtw0lf and @_jwagner in collaboration with @proofpoint Threat Research Team have undertaken a deep dive into the India-aligned #Bitter (TA397) cyber espionage group. Read part one over at Proofpoint, where they cover campaigns, infection chains, hand-on-keyboard…
Also made a quick video on how to install TitanHide in Windows Sandbox using the SandboxBootkit project. It takes about 3 minutes end-to-end.
🔥 TitanHide has been updated to support the latest VMProtect 3.9.4 changes! The service name is now used as the device name as well, so the check for \\.\TitanHide will fail if you name the service differently 🧠
Here's a cool new way to learn Assembly - write a GUI from scratch in it! This cool little article shows you how to do that, and teaches you all about some other GUI fundamentals. A very good exercise, have fun!
We analyzed a .NET multi-stage malware delivery system active since early 2022 that deploys commodity stealers and RATs through a three-stage loading process. Through our code reuse technology, we discovered more than 20,000 samples spanning three years, delivering 10 distinct…
🚀 We are proud to announce the availability of Threatray Release v2.0, bringing a huge set of additions and improvements to the platform. ✅ The introduction of Goodware Identification enhances analysis by identifying benign code from runtime, third-party libraries and…
United States 트렌드
- 1. #SixKingsSlam 5,096 posts
- 2. #AnteX N/A
- 3. Dork Cult Protest Day 24.9K posts
- 4. Vandy 4,391 posts
- 5. Semaj Morgan N/A
- 6. Araujo 578K posts
- 7. Andrew Marsh N/A
- 8. Duke 74.6K posts
- 9. #GoBlue 1,482 posts
- 10. Nuss 2,270 posts
- 11. Pavia 1,476 posts
- 12. Zvada N/A
- 13. McLaren 36.4K posts
- 14. Mike Shula N/A
- 15. Vanderbilt 4,213 posts
- 16. Gil Manzano 28K posts
- 17. Jelly Roll 1,287 posts
- 18. Haaland 49.3K posts
- 19. Gameday 31.8K posts
- 20. Piastri 17.3K posts
내가 좋아할 만한 콘텐츠
-
d00rt
@D00RT_RM -
Steve YARA Synapse Miller
@stvemillertime -
Valthek
@ValthekOn -
CAPE Sandbox
@CapeSandbox -
Itay Cohen 🌱
@megabeets_ -
Evilcry_
@Blackmond_ -
J.A.R.V.I.S
@peppermalware -
Philippe Lagadec
@decalage2 -
void m4p()
@voidm4p -
Catch all the Malwa
@MalwareCantFly -
Drunk Binary
@DrunkBinary -
Antelox
@Antelox -
sean
@seanmw -
EKTracker
@baberpervez2 -
Farenain
@Farenain
Something went wrong.
Something went wrong.